Information Disclosure Vulnerability in Intel Processors
CVE-2021-0086

6.5MEDIUM

Key Information:

Vendor

Intel
Status
Intel(r) Brand Verification Tool
Vendor
CVE Published:
9 June 2021

What is CVE-2021-0086?

An information disclosure vulnerability exists in certain Intel processors that stems from observable discrepancies in floating-point operations. This issue could potentially allow an authorized user with local access to exploit the flaw, thereby enabling disclosure of sensitive information. Organizations utilizing affected Intel processors should be aware of this potential risk and apply mitigations as outlined in relevant advisories to enhance their security posture.

Affected Version(s)

Intel(R) Brand Verification Tool before version 11.0.0.1225

References

https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM
https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2021/06/08/7
mailing-listx_refsource_MLIST

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.