ГлавнаяУязвимости → CVE-2021-33162
8.4высокая

CVE-2021-33162

Описание

Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow an authenticated user to potentially enable escalation of privilege via local access.

Затрагиваемое ПО
Intel Ethernet controller i225-it firmwareIntel Ethernet controller i225-itIntel Ethernet controller i225-lm firmwareIntel Ethernet controller i225-lmIntel Ethernet controller i225-v firmwareIntel Ethernet controller i225-vIntel Ethernet adapter complete driver
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H
Источники
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00756.htmlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00756.html