Escalation of Privilege in Intel SSD Data Center Tool by Intel
CVE-2021-0100

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Ssd Data Center Tool, Versions Downloaded
Vendor: CVE Published:; 9 June 2021

What is CVE-2021-0100?

The Intel SSD Data Center Tool has been identified with a vulnerability related to incorrect default permissions in its installer. This issue affects versions downloaded prior to the end of 2020 and allows an authenticated user to exploit the system via local access. This could potentially allow for elevating privileges, posing a risk to the integrity and security of affected environments. It is essential for users to review the security measures in place and update to a patched version to mitigate this risk.

Affected Version(s)

Intel(R) SSD Data Center Tool, downloaded See references

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2021
Vulnerability Reserved
Oct 22, 2020