Fas/aff Bios

fas/aff_bios

Vendor: Netapp • 22 CVEs

CVEs (22)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-33117 2Intel Netapp 2Bios Fas/aff Bios May 5, 2025 May 12, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7, may allow a local attacker to potentially enable information disclosure via local access.
CVE-2021-0156 2Intel Netapp 680Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+677 more May 5, 2025 Feb 9, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.
CVE-2021-0145 2Intel Netapp 121Celeron 6305 Celeron 6305eCeleron 6600he+118 more May 5, 2025 Feb 9, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2021-0125 2Intel Netapp 681Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.6 MEDIUM· v3 4.6 MEDIUM· v2 Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.
CVE-2021-0124 2Intel Netapp 681Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.6 MEDIUM· v3 4.6 MEDIUM· v2 Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.
CVE-2021-0119 2Intel Netapp 681Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.2 MEDIUM· v3 4.6 MEDIUM· v2 Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.
CVE-2021-0118 2Intel Netapp 681Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
CVE-2021-0117 2Intel Netapp 681Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+678 more May 5, 2025 Feb 9, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Pointer issues in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
CVE-2021-0116 2Intel Netapp 681Atom C3308 Firmware Atom C3336 FirmwareAtom C3338 Firmware+678 more May 5, 2025 Feb 9, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
CVE-2021-0115 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Buffer overflow in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2021-0111 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 NULL pointer dereference in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
CVE-2021-0107 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2021-0103 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Insufficient control flow management in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
CVE-2021-0099 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Insufficient control flow management in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.
CVE-2021-0093 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 Incorrect default permissions in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.
CVE-2021-0092 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.
CVE-2021-0091 2Intel Netapp 681Atom C3308 Atom C3336Atom C3338+678 more May 5, 2025 Feb 9, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Improper access control in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable an escalation of privilege via local access.
CVE-2021-33625 3Insyde NetappSiemens 18Fas/aff Bios Insydeh2oRuggedcom Ape1808 Firmware+15 more Nov 4, 2025 Feb 3, 2022 N/A· v4 7.5 HIGH· v3 6.9 MEDIUM· v2 An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether the address of the bu...Show more An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether the address of the buffer is valid, which allows use of SMRAM, MMIO, or OS kernel addresses.Show less
CVE-2020-24512 3Debian IntelNetapp 5Debian Linux Fas/aff BiosHci Compute Node Bios+2 more Nov 21, 2024 Jun 9, 2021 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-24511 3Debian IntelNetapp 5Debian Linux Fas/aff BiosHci Compute Node Bios+2 more Nov 21, 2024 Jun 9, 2021 N/A· v4 6.5 MEDIUM· v3 2.1 LOW· v2 Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

12 Next