Sensitive information in resource not removed before reuse in firmware for some Intel(R) SSD and Intel(R) Optane(TM) SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html | Mitigation Vendor Advisory |
https://www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf | Broken Link |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
07 Oct 2022, 13:58
Type | Values Removed | Values Added |
---|---|---|
References |
|
12 Jul 2022, 17:42
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-212 |
23 May 2022, 16:17
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 2.1
v3 : 4.6 |
CPE | cpe:2.3:h:intel:optane_memory_h10_with_solid_state_storage:-:*:*:*:*:*:*:* cpe:2.3:h:intel:optane_ssd_p5800x:-:*:*:*:*:*:*:* cpe:2.3:h:intel:optane_ssd_dc_p4801x:-:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_ssd_900p_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:intel:optane_ssd_900p:-:*:*:*:*:*:*:* cpe:2.3:h:intel:optane_ssd_dc_p4800x:-:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_ssd_dc_p4800x_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_memory_h10_with_solid_state_storage_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_ssd_dc_p4801x_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:intel:optane_ssd_905p:-:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_ssd_p5800x_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:intel:optane_memory_h20_with_solid_state_storage:-:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_memory_h20_with_solid_state_storage_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:intel:optane_ssd_905p_firmware:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo | |
References | (MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html - Mitigation, Vendor Advisory |
12 May 2022, 17:24
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-12 17:15
Updated : 2024-02-04 22:29
NVD link : CVE-2021-33082
Mitre link : CVE-2021-33082
CVE.ORG link : CVE-2021-33082
JSON object : View
Products Affected
intel
- optane_ssd_905p
- optane_memory_h10_with_solid_state_storage
- optane_ssd_p5800x
- optane_memory_h20_with_solid_state_storage
- optane_ssd_dc_p4800x
- optane_ssd_dc_p4801x_firmware
- optane_ssd_dc_p4801x
- optane_ssd_900p
- optane_memory_h10_with_solid_state_storage_firmware
- optane_ssd_905p_firmware
- optane_ssd_dc_p4800x_firmware
- optane_memory_h20_with_solid_state_storage_firmware
- optane_ssd_900p_firmware
- optane_ssd_p5800x_firmware
CWE
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer