Improper Input Validation in Intel Ethernet Adaptors and Controllers
CVE-2021-33141

8.6HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet Adapters And Intel(r) Ethernet Controller I225 Manageability Firmware
Vendor: CVE Published:; 23 February 2024

Summary

An issue exists within certain Intel Ethernet Adapters and the Ethernet Controller I225 Manageability firmware, where improper input validation may allow unauthorized users to exploit network access. This vulnerability could potentially enable an attacker to disrupt network services. It is crucial for users and administrators to apply the appropriate firmware updates to mitigate any risks associated with this security flaw.

Affected Version(s)

Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Feb 23, 2024
Vulnerability Reserved
May 18, 2021