CVE-2021-0110Incorrect Authorization in Intel Thunderbolt DCH Driver

CWE-863Incorrect Authorization3 documents3 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 80.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Thunderbolt DCH Driver
Timeline
PublishedNov 17
Latest updateMay 24

Description

Improper access control in some Intel(R) Thunderbolt(TM) Windows DCH Drivers before version 1.41.1054.0 may allow unauthenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDintel/thunderbolt_dch_driver< 1.41.1054.0

🔴Vulnerability Details

2
GHSA
GHSA-6x33-fgpv-f89f: Improper access control in some Intel(R) Thunderbolt(TM) Windows DCH Drivers before version 12022-05-24
CVEList
CVE-2021-0110: Improper access control in some Intel(R) Thunderbolt(TM) Windows DCH Drivers before version 12021-11-17
CVE-2021-0110 — Incorrect Authorization in Intel | cvebase