Intel Optane Ssd Dc P4801X Firmware vulnerabilities
13 known vulnerabilities affecting intel/optane_ssd_dc_p4801x_firmware.
Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM12
Vulnerabilities
Page 1 of 1
CVE-2023-27519HIGHCVSS 7.8fixed in e20106502023-11-14
CVE-2023-27519 [MEDIUM] CWE-20 CVE-2023-27519: Improper input validation in firmware for some Intel(R) Optane(TM) SSD products may allow a privileg
Improper input validation in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-24588MEDIUMCVSS 4.6fixed in e20106502023-11-14
CVE-2023-24588 [MEDIUM] CWE-200 CVE-2023-24588: Exposure of sensitive information to an unauthorized actor in firmware for some Intel(R) Optane(TM)
Exposure of sensitive information to an unauthorized actor in firmware for some Intel(R) Optane(TM) SSD products may allow an unauthenticated user to potentially enable information disclosure via physical access.
nvd
CVE-2023-24587MEDIUMCVSS 4.4fixed in e20106502023-11-14
CVE-2023-24587 [MEDIUM] CWE-691 CVE-2023-24587: Insufficient control flow management in firmware for some Intel(R) Optane(TM) SSD products may allow
Insufficient control flow management in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable denial of service via local access.
nvd
CVE-2023-27879MEDIUMCVSS 4.6fixed in e20106502023-11-14
CVE-2023-27879 [MEDIUM] CWE-284 CVE-2023-27879: Improper access control in firmware for some Intel(R) Optane(TM) SSD products may allow an unauthent
Improper access control in firmware for some Intel(R) Optane(TM) SSD products may allow an unauthenticated user to potentially enable information disclosure via physical access.
nvd
CVE-2023-27306MEDIUMCVSS 5.5fixed in e20106502023-11-14
CVE-2023-27306 [MEDIUM] CWE-665 CVE-2023-27306: Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an authentic
Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an authenticated user to potentially enable denial of service via local access.
nvd
CVE-2021-33078MEDIUMCVSS 4.7fixed in e20106002022-05-12
CVE-2021-33078 [MEDIUM] CWE-362 CVE-2021-33078: Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC Prod
Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow a privileged user to potentially enable denial of service via local access.
nvd
CVE-2021-33083MEDIUMCVSS 4.4fixed in e20106002022-05-12
CVE-2021-33083 [MEDIUM] CWE-287 CVE-2021-33083: Improper authentication in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD, Intel(R) Optane(
Improper authentication in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel(R) SSD DC Products may allow an privileged user to potentially enable information disclosure via local access.
nvd
CVE-2021-33075MEDIUMCVSS 4.7fixed in e20106002022-05-12
CVE-2021-33075 [MEDIUM] CWE-362 CVE-2021-33075: Race condition in firmware for some Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel(R)
Race condition in firmware for some Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel(R) SSD DC Products may allow a privileged user to potentially enable denial of service via local access.
nvd
CVE-2021-33082MEDIUMCVSS 4.6fixed in e20106002022-05-12
CVE-2021-33082 [MEDIUM] CWE-212 CVE-2021-33082: Sensitive information in resource not removed before reuse in firmware for some Intel(R) SSD and Int
Sensitive information in resource not removed before reuse in firmware for some Intel(R) SSD and Intel(R) Optane(TM) SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.
nvd
CVE-2021-33077MEDIUMCVSS 6.8fixed in e20106002022-05-12
CVE-2021-33077 [MEDIUM] CVE-2021-33077: Insufficient control flow management in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD and
Insufficient control flow management in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
nvd
CVE-2021-33069MEDIUMCVSS 5.5fixed in e20106002022-05-12
CVE-2021-33069 [MEDIUM] CWE-404 CVE-2021-33069: Improper resource shutdown or release in firmware for some Intel(R) SSD, Intel(R) SSD DC, Intel(R) O
Improper resource shutdown or release in firmware for some Intel(R) SSD, Intel(R) SSD DC, Intel(R) Optane(TM) SSD and Intel(R) Optane(TM) SSD DC may allow a privileged user to potentially enable denial of service via local access.
nvd
CVE-2021-33080MEDIUMCVSS 6.8fixed in e20106002022-05-12
CVE-2021-33080 [MEDIUM] CWE-212 CVE-2021-33080: Exposure of sensitive system information due to uncleared debug information in firmware for some Int
Exposure of sensitive system information due to uncleared debug information in firmware for some Intel(R) SSD DC, Intel(R) Optane(TM) SSD and Intel(R) Optane(TM) SSD DC Products may allow an unauthenticated user to potentially enable information disclosure or escalation of privilege via physical access.
nvd
CVE-2021-33074MEDIUMCVSS 4.6fixed in e20106002022-05-12
CVE-2021-33074 [MEDIUM] CVE-2021-33074: Protection mechanism failure in firmware for some Intel(R) SSD, Intel(R) SSD DC and Intel(R) Optane(
Protection mechanism failure in firmware for some Intel(R) SSD, Intel(R) SSD DC and Intel(R) Optane(TM) SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.
nvd