CVE-2021-0185 — Vulnetix

CVE-2021-0185 PUBLISHED CVSS 7.5 HIGH

Improper input validation in the firmware for some Intel(R) Server Board M10JNP Family before version 7.216 may allow a privileged user to potentially enable an escalation of privilege via local access.

EPSS 0.06% · 18.5th percentile

Risk Scores

CVSS 3.1

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

EPSS Score

0.06%

18.5th percentile

Affected Products

Vendor	Product	Versions
intel	m10jnp2sb_firmware	0
n/a	Intel(R) Server Board M10JNP Family	before version 7.216

Exploit Intelligence

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00708.html (circl)

Timeline

Nov 9, 2022 CVE Published
Nov 11, 2022 EPSS Score
Dec 24, 2022 EPSS Score
Feb 5, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 20, 2023 EPSS Score
May 2, 2023 EPSS Score
Jun 14, 2023 EPSS Score
Jul 27, 2023 EPSS Score
Sep 8, 2023 EPSS Score
Oct 21, 2023 EPSS Score
Dec 3, 2023 EPSS Score

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00708.html url
https://nvd.nist.gov/vuln/detail/CVE-2021-0185 advisory

Open in Interactive Console →