Improper Condition Check in Intel Ethernet Adapters 800 Series Controllers
CVE-2021-0006

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet Adapters 800 Series Controllers And Associated Adapters
Vendor: CVE Published:; 11 August 2021

Summary

The vulnerability in Intel Ethernet Adapters 800 Series Controllers arises from an improper condition check in the firmware, which could allow a privileged user to provoke a denial of service through local access. This flaw affects all associated adapters running versions prior to 1.5.4.0, potentially compromising system stability and access. Users are advised to review firmware updates and apply necessary patches to mitigate the risk.

Affected Version(s)

Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.4.0

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210827-0009/

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 11, 2021
Vulnerability Reserved
Oct 22, 2020