Vulnerability CVE-2021-0145

Vulnerability CVE-2021-0145

Published: 2022-02-09 Modified: 2022-02-10

Description:

Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Type:

CWE-665

(Improper Initialization)

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score	Impact Subscore	Exploitability Subscore
2.1/10	2.9/10	3.9/10

Exploit range	Attack complexity	Authentication
Local	Low	No required
Confidentiality impact	Integrity impact	Availability impact
Partial	None	None

Affected software
Netapp -> Fas\/aff bios
Intel -> Core i5-1030g7
Intel -> Core i5-1145gre
Intel -> Core i7-11700
Intel -> Core i9-11900k
Intel -> Xeon gold 5300
Intel -> Xeon platinum 8360y
Intel -> Xeon w-11865mre
Intel -> Core i5-1035g1
Intel -> Core i5-11500
Intel -> Core i7-11700f
Intel -> Core i9-11900kf
Intel -> Xeon gold 6300
Intel -> Xeon platinum 8362
Intel -> Xeon w-11955m
Intel -> Core i5-1035g4
Intel -> Core i5-11500h
Intel -> Core i7-11700k
Intel -> Core i9-11900t
Intel -> Xeon platinum 8321hc
Intel -> Xeon platinum 8368
Intel -> Xeon w-1300
Intel -> Celeron 6305
Intel -> Core i5-1035g7
Intel -> Core i5-11500t
Intel -> Core i7-11700kf
Intel -> Core i9-11950h
Intel -> Xeon platinum 8351n
Intel -> Xeon platinum 8368q
Intel -> Xeon w-1350
Intel -> Celeron 6305e
Intel -> Core i5-11260h
Intel -> Core i5-1155g7
Intel -> Core i7-11700t
Intel -> Core i9-11980hk
Intel -> Xeon platinum 8352m
Intel -> Xeon platinum 8376h
Intel -> Xeon w-1350p
Intel -> Celeron 6600he
Intel -> Core i5-11300h
Intel -> Core i5-11600
Intel -> Core i7-11800h
Intel -> Pentium gold 7505
Intel -> Xeon platinum 8352s
Intel -> Xeon platinum 8376hl
Intel -> Xeon w-1370
Intel -> Core i3-1000g1
Intel -> Core i5-1130g7
Intel -> Core i5-11600k
Intel -> Core i7-1180g7
Intel -> Xeon e-2314
Intel -> Xeon platinum 8352v
Intel -> Xeon platinum 8380
Intel -> Xeon w-1370p
Intel -> Core i3-1000g4
Intel -> Core i5-11320h
Intel -> Core i5-11600kf
Intel -> Core i7-11850h
Intel -> Xeon e-2324g
Intel -> Xeon platinum 8352y
Intel -> Xeon platinum 8380h
Intel -> Xeon w-1390
Intel -> Core i3-1005g1
Intel -> Core i5-1135g7
Intel -> Core i5-11600t
Intel -> Core i7-11850he
Intel -> Xeon e-2334
Intel -> Xeon platinum 8353h
Intel -> Xeon platinum 8380hl
Intel -> Xeon w-1390p
Intel -> Core i3-11100he
Intel -> Core i5-11400
Intel -> Core i7-1060g7
Intel -> Core i7-1185g7
Intel -> Xeon e-2336
Intel -> Xeon platinum 8354h
Intel -> Xeon silver 4300
Intel -> Xeon w-1390t
Intel -> Core i3-1110g4
Intel -> Core i5-11400f
Intel -> Core i7-1065g7
Intel -> Core i7-1185g7e
Intel -> Xeon e-2356g
Intel -> Xeon platinum 8356h
Intel -> Xeon w-11155mle
Intel -> Core i3-1115g4
Intel -> Core i5-11400h
Intel -> Core i7-11370h
Intel -> Core i7-1185gre
Intel -> Xeon e-2374g
Intel -> Xeon platinum 8358
Intel -> Xeon w-11155mre
Intel -> Core i3-1115g4e
Intel -> Core i5-11400t
Intel -> Core i7-11375h
Intel -> Core i7-1195g7
Intel -> Xeon e-2378
Intel -> Xeon platinum 8358p
Intel -> Xeon w-11555mle
Intel -> Core i3-1115gre

References:

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00561.html

https://security.netapp.com/advisory/ntap-20220210-0009/

Vulnerability CVE-2021-0145

Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CWE-665

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:N/A:N)

2.1/10

2.9/10

3.9/10

Local

Low

No required

Partial

None

None

Affected software

References: