Uncontrolled Resource Consumption in Intel Ethernet Adapters 800 Series Controllers
CVE-2021-0008

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet Adapters 800 Series Controllers And Associated Adapters
Vendor: CVE Published:; 11 August 2021

Summary

A vulnerability exists in the firmware of Intel Ethernet Adapters 800 Series Controllers that may allow a privileged user to exploit uncontrolled resource consumption. This could enable a denial of service condition through local access to the affected systems. Users of these adapters should update to version 1.5.3.0 or later to mitigate this risk.

Affected Version(s)

Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210827-0009/

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 11, 2021
Vulnerability Reserved
Oct 22, 2020