CVE-2021-0200
6.7
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.8 / Impact: 5.9
Source: NVD
Description
Out-of-bounds write in the firmware for Intel(R) Ethernet 700 Series Controllers before version 8.2 may allow a privileged user to potentially enable an escalation of privilege via local access.
Affected (11)
Products: Intel: Ethernet Controller V710 At2 Firmware, Ethernet Controller X710 Tm4 Firmware, Ethernet Controller X710 At2 Firmware, Ethernet Controller Xxv710 Am2 Firmware, Ethernet Controller Xxv710 Am1 Firmware, Ethernet Controller X710 Am2 Firmware, Ethernet Controller Xl710 Am1 Firmware, Ethernet Controller Xl710 Am2 Firmware, Ethernet Controller X710 Bm2 Firmware, Ethernet Controller Xl710 Bm2 Firmware, Ethernet Controller Xl710 Bm1 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller V710 At2 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller X710 Tm4 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller X710 At2 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller Xxv710 Am2 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller Xxv710 Am1 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller X710 Am2 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller Xl710 Am1 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller Xl710 Am2 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller X710 Bm2 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller Xl710 Bm2 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 8.2 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Controller Xl710 Bm1 | All versions |
References (4)
Source: secure@intel.com
Third Party Advisory
Source: secure@intel.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.