CVE-2021-0012

CWE-416Use After Free4 documents4 sources
Severity
5.5MEDIUM
EPSS
0.2%
top 61.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Intel Graphics DriverIntel Graphics Drivers
Timeline
PublishedAug 11
Latest updateMay 24

Description

Use after free in some Intel(R) Graphics Driver before version 27.20.100.8336, 15.45.33.5164, and 15.40.47.5166 may allow an authenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDintel/graphics_driver15.4015.40.47.5166+1
NVDintel/graphics_drivers27.2027.20.100.9030
CVEListV5intel(r)_graphics_driverbefore version 27.20.100.8336, 15.45.33.5164, and 15.40.47.5166

Patches

Patch: www.intel.comPatch: www.intel.com

🔴Vulnerability Details

2
GHSA
GHSA-ww4m-wgvm-rv46: Use after free in some Intel(R) Graphics Driver before version 272022-05-24
CVEList
CVE-2021-0012: Use after free in some Intel(R) Graphics Driver before version 272021-08-11

📋Vendor Advisories

1
VMware
VMware Carbon Black App Control update addresses authentication bypass (CVE-2021-21998)2021-06-22
CVE-2021-0012 (MEDIUM CVSS 5.5) | Use after free in some Intel(R) Gra | cvebase.io