Out-of-Bounds Read in Intel Processors Firmware
CVE-2021-0118

6.7MEDIUM

Key Information:

Vendor: Netapp
Status: Intel(r) Processors
Vendor: CVE Published:; 9 February 2022

What is CVE-2021-0118?

The vulnerability involves an out-of-bounds read in the firmware for specific Intel processors, which may allow a privileged user with local access to potentially escalate their privileges. This situation can lead to unauthorized access to system resources, compromising the integrity and security of the affected systems.

Affected Version(s)

Intel(R) Processors See references

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20220210-0007/

x_refsource_CONFIRM

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 9, 2022
Vulnerability Reserved
Oct 22, 2020

Netapp

What is CVE-2021-0118?

Affected Version(s)

References

CVSS V3.1

Timeline