CVE-2021-0197

3 documents3 sources

Severity

4.4MEDIUM

EPSS

0.1%

top 69.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Ethernet Network Controller E810-cam1 Firmware Intel Ethernet Network Controller E810-cam2 Firmware Intel Ethernet Network Controller E810-xxvam2 Firmware

Timeline

PublishedNov 17

Latest updateMay 24

Description

Protection mechanism failure in the firmware for the Intel(R) Ethernet Network Controller E810 before version 1.5.5.6 may allow a privileged user to enable a denial of service via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 0.8 | Impact: 3.6

Affected Packages4 packages

▶NVDintel/ethernet_network_controller_e810-cam1_firmware< 1.5.5.6

▶NVDintel/ethernet_network_controller_e810-cam2_firmware< 1.5.5.6

▶NVDintel/ethernet_network_controller_e810-xxvam2_firmware< 1.5.5.6

▶CVEListV5intel(r)_ethernet_network_controller_e810before version 1.5.5.6

🔴Vulnerability Details

GHSA

GHSA-2788-j269-m3qw: Protection mechanism failure in the firmware for the Intel(R) Ethernet Network Controller E810 before version 1↗2022-05-24

▶

CVEList

CVE-2021-0197: Protection mechanism failure in the firmware for the Intel(R) Ethernet Network Controller E810 before version 1↗2021-11-17

▶