Race Condition Vulnerability in Intel Optane SSD and Intel SSD DC Products
CVE-2021-33078

4.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Optane(tm) Ssd And Intel(r) Ssd Dc Products
Vendor: CVE Published:; 12 May 2022

What is CVE-2021-33078?

A race condition vulnerability exists in the firmware of certain Intel Optane SSDs and Intel SSD DC Products. This flaw could allow a privileged user to execute a denial of service attack through local access, potentially disrupting operations and impacting system reliability. Users of these products should take proactive measures to secure their systems and apply any necessary patches as recommended by Intel.

Affected Version(s)

Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products See references

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://www.solidigm.com/content/dam/newco-aem-site/maste...

x_refsource_MISC

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2022
Vulnerability Reserved
May 18, 2021