VDB
CVE-2021-33058
CVE-2021-33058
PUBLISHED
In Intel Ethernet Controller existieren mehrere Schwachstellen. Die Fehler sind auf eine unzureichende Zugriffskontrolle und mehrere unzulässige Eingabevalidierungen zurückzuführen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen und seine Privilegien zu erweitern. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion und erhöhte Privilegien.
EPSS 0.07% · 22.0th percentile
Risk Scores
EPSS Score
0.07%
22.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| IBM | IBM QRadar SIEM | |
| Intel | Intel Ethernet Controller Network Adapter < 1.4.0.21 | |
| HP | HP Computer | |
| Ubuntu | Ubuntu Linux | |
| Intel | Intel Ethernet Controller Network Adapter < 1.4.0.15 | |
| Oracle | Oracle Linux | |
| Dell | Dell BIOS | |
| Intel | Intel Ethernet Controller 500 Series < 3.17.3 |
Timeline
- Nov 9, 2021 CVE Published
- Nov 18, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Jan 12, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 3, 2022 EPSS Score
- Jun 27, 2022 EPSS Score
- Aug 22, 2022 EPSS Score
- Oct 16, 2022 EPSS Score
- Dec 10, 2022 EPSS Score
- Feb 4, 2023 EPSS Score
References
- https://support.lenovo.com/us/en/product_security/LEN-66618 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-2328.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2328 advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00524.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00554.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00555.html advisory
- https://support.lenovo.com/us/en/product_security/LEN-66617 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/009994.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010004.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010003.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010008.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010005.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010073.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010080.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010213.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010210.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010214.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010217.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010246.html advisory
- https://ubuntu.com/security/notices/USN-5343-1 advisory
…and 5 more