CVE-2021-33120

Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access.

CVSS v3 5.4 MEDIUM
CVSS v2.0 5.5 MEDIUM

5.4^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 2.5

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

5.5^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:P

Exploitability : 8.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00589.html	Mitigation Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:intel:atom_p5942b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_p5942b:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:intel:atom_p5931b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_p5931b:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:intel:atom_p5962b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_p5962b:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:intel:atom_p5921b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_p5921b:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:intel:xeon_d1700_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_d1700:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:intel:xeon_d2700_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_d2700:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:intel:core_i5-l16g7_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:core_i5-l16g7:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:intel:core_i3-l13g4_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:core_i3-l13g4:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:intel:pentium_j6425_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:pentium_j6425:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:intel:pentium_n6415_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:pentium_n6415:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:intel:celeron_j6413_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:celeron_j6413:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:intel:celeron_n6211_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:celeron_n6211:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:intel:atom_x6413e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6413e:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:intel:atom_x6425re_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6425re:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:intel:atom_x6427fe_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6427fe:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:intel:atom_x6212re_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6212re:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:intel:atom_x6200fe_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6200fe:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:intel:atom_x6211e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6211e:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:intel:atom_x6425e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:atom_x6425e:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:intel:pentium_silver_n6005_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:pentium_silver_n6005:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:intel:pentium_silver_n6000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:pentium_silver_n6000:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:intel:celeron_n4505_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:celeron_n4505:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:intel:celeron_n4500_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:celeron_n4500:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:intel:celeron_n5105_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:celeron_n5105:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:intel:celeron_n5100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:celeron_n5100:-:*:*:*:*:*:*:*

History

15 Feb 2022, 17:50

Type	Values Removed	Values Added
CPE		cpe:2.3:o:intel:celeron_n6211_firmware:-:::::::* cpe:2.3:o:intel:atom_x6211e_firmware:-:::::::* cpe:2.3:h:intel:celeron_j6413:-:::::::* cpe:2.3:o:intel:atom_p5921b_firmware:-:::::::* cpe:2.3:o:intel:pentium_j6425_firmware:-:::::::* cpe:2.3:h:intel:atom_x6425re:-:::::::* cpe:2.3:h:intel:pentium_silver_n6005:-:::::::* cpe:2.3:h:intel:pentium_j6425:-:::::::* cpe:2.3:h:intel:pentium_silver_n6000:-:::::::* cpe:2.3:h:intel:core_i3-l13g4:-:::::::* cpe:2.3:h:intel:atom_x6427fe:-:::::::* cpe:2.3:h:intel:atom_x6212re:-:::::::* cpe:2.3:h:intel:celeron_n4500:-:::::::* cpe:2.3:h:intel:celeron_n5105:-:::::::* cpe:2.3:o:intel:atom_p5942b_firmware:-:::::::* cpe:2.3:o:intel:pentium_n6415_firmware:-:::::::* cpe:2.3:o:intel:atom_x6212re_firmware:-:::::::* cpe:2.3:h:intel:atom_x6425e:-:::::::* cpe:2.3:o:intel:celeron_n4505_firmware:-:::::::* cpe:2.3:o:intel:celeron_n5105_firmware:-:::::::* cpe:2.3:o:intel:core_i3-l13g4_firmware:-:::::::* cpe:2.3:o:intel:atom_x6425re_firmware:-:::::::* cpe:2.3:o:intel:atom_p5931b_firmware:-:::::::* cpe:2.3:o:intel:atom_x6413e_firmware:-:::::::* cpe:2.3:h:intel:celeron_n4505:-:::::::* cpe:2.3:o:intel:atom_x6427fe_firmware:-:::::::* cpe:2.3:o:intel:core_i5-l16g7_firmware:-:::::::* cpe:2.3:h:intel:atom_x6413e:-:::::::* cpe:2.3:h:intel:core_i5-l16g7:-:::::::* cpe:2.3:h:intel:atom_p5962b:-:::::::* cpe:2.3:o:intel:xeon_d1700_firmware:-:::::::* cpe:2.3:h:intel:celeron_n5100:-:::::::* cpe:2.3:o:intel:atom_x6200fe_firmware:-:::::::* cpe:2.3:h:intel:xeon_d1700:-:::::::* cpe:2.3:h:intel:atom_x6211e:-:::::::* cpe:2.3:o:intel:pentium_silver_n6000_firmware:-:::::::* cpe:2.3:h:intel:pentium_n6415:-:::::::* cpe:2.3:o:intel:celeron_n5100_firmware:-:::::::* cpe:2.3:h:intel:atom_p5921b:-:::::::* cpe:2.3:o:intel:pentium_silver_n6005_firmware:-:::::::* cpe:2.3:h:intel:atom_x6200fe:-:::::::* cpe:2.3:h:intel:atom_p5942b:-:::::::* cpe:2.3:o:intel:atom_p5962b_firmware:-:::::::* cpe:2.3:o:intel:celeron_j6413_firmware:-:::::::* cpe:2.3:h:intel:celeron_n6211:-:::::::* cpe:2.3:o:intel:celeron_n4500_firmware:-:::::::* cpe:2.3:o:intel:xeon_d2700_firmware:-:::::::* cpe:2.3:h:intel:atom_p5931b:-:::::::* cpe:2.3:h:intel:xeon_d2700:-:::::::* cpe:2.3:o:intel:atom_x6425e_firmware:-:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 5.5 v3 : 5.4
CWE		CWE-125
References	~~(MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00589.html -~~	(MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00589.html - Mitigation, Vendor Advisory

09 Feb 2022, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-02-09 23:15

Updated : 2024-02-04 22:29

NVD link : CVE-2021-33120

Mitre link : CVE-2021-33120

CVE.ORG link : CVE-2021-33120

JSON object : View

Products Affected

intel

pentium_n6415_firmware
atom_x6425re
pentium_silver_n6000
atom_x6200fe_firmware
atom_x6413e_firmware
celeron_n6211
celeron_n5105
atom_x6425e
atom_x6212re
celeron_j6413_firmware
celeron_n4505_firmware
pentium_j6425
atom_p5962b_firmware
celeron_j6413
pentium_n6415
celeron_n5105_firmware
atom_p5931b_firmware
core_i5-l16g7_firmware
atom_p5942b_firmware
core_i3-l13g4_firmware
celeron_n6211_firmware
celeron_n5100_firmware
atom_x6427fe
atom_p5921b_firmware
core_i5-l16g7
pentium_silver_n6005
core_i3-l13g4
atom_x6413e
atom_x6425re_firmware
pentium_silver_n6005_firmware
atom_x6211e
atom_p5962b
xeon_d1700_firmware
xeon_d2700_firmware
pentium_silver_n6000_firmware
celeron_n4500
atom_x6211e_firmware
celeron_n5100
xeon_d1700
atom_p5931b
atom_p5921b
pentium_j6425_firmware
atom_x6425e_firmware
atom_x6212re_firmware
atom_x6427fe_firmware
celeron_n4500_firmware
celeron_n4505
xeon_d2700
atom_p5942b
atom_x6200fe

CWE

CWE-125

Out-of-bounds Read

5.4 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

5.5 /10

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2021-33120

5.4^/10

5.5^/10

Attach tags to `CVE-2021-33120`