Improper Input Validation in Intel Ethernet Controllers and Drivers
CVE-2021-0084

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet Controllers X722 And 800 Series Linux Rmda Driver
Vendor: CVE Published:; 11 August 2021

Summary

A vulnerability exists in the Intel Ethernet Controllers X722 and 800 series Linux RMDA driver due to improper input validation. This flaw could allow an authenticated user to escalate privileges through local access, potentially compromising system integrity. Users are encouraged to update to the latest version to mitigate any risk associated with this vulnerability.

Affected Version(s)

Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA driver before version 1.3.19

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210827-0008/

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 11, 2021
Vulnerability Reserved
Oct 22, 2020