Denial of Service Vulnerability in Intel Ethernet Adapters 800 Series
CVE-2021-0005

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet Adapters 800 Series Controllers And Associated Adapters
Vendor: CVE Published:; 11 August 2021

Summary

A security flaw exists in the firmware of Intel Ethernet Adapters 800 Series Controllers that allows a privileged user to potentially initiate a denial of service. This vulnerability is triggered by an uncaught exception in the firmware prior to version 1.5.3.0, which could be exploited via local access, leading to disruptions in network services.

Affected Version(s)

Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210827-0009/

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 11, 2021
Vulnerability Reserved
Oct 22, 2020