Vulnerability CVE-2021-33060

Vulnerability Name:

CVE-2021-33060 (CCN-233114)

Assigned:

2021-05-18

Published:

2022-08-09

Updated:

2022-10-29

Summary:

Out-of-bounds write in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.0 Medium (CCN CVSS v2 Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-787

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2021-33060

Source: XF
Type: UNKNOWN
intel-cve202133060-priv-esc(233114)

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20220930-0004/

Source: CCN
Type: INTEL-SA-00686
2022.2 IPU BIOS Advisory

Source: MISC
Type: Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00686.html

Vulnerable Configuration:

Configuration 1:

cpe:/o:intel:xeon_gold_5315y_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5315y:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:intel:xeon_gold_5317_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5317:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:intel:xeon_gold_5318n_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5318n:-:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:intel:xeon_gold_5318s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5318s:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:intel:xeon_gold_5318y_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5318y:-:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:intel:xeon_gold_5320_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5320:-:*:*:*:*:*:*:*

Configuration 7:

cpe:/o:intel:xeon_gold_5320t_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5320t:-:*:*:*:*:*:*:*

Configuration 8:

cpe:/o:intel:xeon_gold_6312u_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6312u:-:*:*:*:*:*:*:*

Configuration 9:

cpe:/o:intel:xeon_gold_6314u_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6314u:-:*:*:*:*:*:*:*

Configuration 10:

cpe:/o:intel:xeon_gold_6326_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6326:-:*:*:*:*:*:*:*

Configuration 11:

cpe:/o:intel:xeon_gold_6330_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6330:-:*:*:*:*:*:*:*

Configuration 12:

cpe:/o:intel:xeon_gold_6330n_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6330n:-:*:*:*:*:*:*:*

Configuration 13:

cpe:/o:intel:xeon_gold_6334_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6334:-:*:*:*:*:*:*:*

Configuration 14:

cpe:/o:intel:xeon_gold_6336y_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6336y:-:*:*:*:*:*:*:*

Configuration 15:

cpe:/o:intel:xeon_gold_6338_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6338:-:*:*:*:*:*:*:*

Configuration 16:

cpe:/o:intel:xeon_gold_6338n_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6338n:-:*:*:*:*:*:*:*

Configuration 17:

cpe:/o:intel:xeon_gold_6338t_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6338t:-:*:*:*:*:*:*:*

Configuration 18:

cpe:/o:intel:xeon_gold_6342_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6342:-:*:*:*:*:*:*:*

Configuration 19:

cpe:/o:intel:xeon_gold_6346_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6346:-:*:*:*:*:*:*:*

Configuration 20:

cpe:/o:intel:xeon_gold_6348_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6348:-:*:*:*:*:*:*:*

Configuration 21:

cpe:/o:intel:xeon_gold_6354_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6354:-:*:*:*:*:*:*:*

Configuration 22:

cpe:/o:intel:xeon_platinum_8351n_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8351n:-:*:*:*:*:*:*:*

Configuration 23:

cpe:/o:intel:xeon_platinum_8352m_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8352m:-:*:*:*:*:*:*:*

Configuration 24:

cpe:/o:intel:xeon_platinum_8352s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8352s:-:*:*:*:*:*:*:*

Configuration 25:

cpe:/o:intel:xeon_platinum_8352v_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8352v:-:*:*:*:*:*:*:*

Configuration 26:

cpe:/o:intel:xeon_platinum_8352y_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8352y:-:*:*:*:*:*:*:*

Configuration 27:

cpe:/o:intel:xeon_platinum_8358_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8358:-:*:*:*:*:*:*:*

Configuration 28:

cpe:/o:intel:xeon_platinum_8358p_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8358p:-:*:*:*:*:*:*:*

Configuration 29:

cpe:/o:intel:xeon_platinum_8360y_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8360y:-:*:*:*:*:*:*:*

Configuration 30:

cpe:/o:intel:xeon_platinum_8362_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8362:-:*:*:*:*:*:*:*

Configuration 31:

cpe:/o:intel:xeon_platinum_8368_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8368:-:*:*:*:*:*:*:*

Configuration 32:

cpe:/o:intel:xeon_platinum_8368q_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8368q:-:*:*:*:*:*:*:*

Configuration 33:

cpe:/o:intel:xeon_platinum_8380_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8380:-:*:*:*:*:*:*:*

Configuration 34:

cpe:/o:intel:xeon_silver_4309y_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_silver_4309y:-:*:*:*:*:*:*:*

Configuration 35:

cpe:/o:intel:xeon_silver_4310_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_silver_4310:-:*:*:*:*:*:*:*

Configuration 36:

cpe:/o:intel:xeon_silver_4310t_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_silver_4310t:-:*:*:*:*:*:*:*

Configuration 37:

cpe:/o:intel:xeon_silver_4314_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_silver_4314:-:*:*:*:*:*:*:*

Configuration 38:

cpe:/o:intel:xeon_silver_4316_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_silver_4316:-:*:*:*:*:*:*:*

Configuration 39:

cpe:/o:intel:xeon_gold_6330h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6330h:-:*:*:*:*:*:*:*

Configuration 40:

cpe:/o:intel:xeon_platinum_8356h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8356h:-:*:*:*:*:*:*:*

Configuration 41:

cpe:/o:intel:xeon_platinum_8360h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8360h:-:*:*:*:*:*:*:*

Configuration 42:

cpe:/o:intel:xeon_platinum_8360hl_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8360hl:-:*:*:*:*:*:*:*

Configuration 43:

cpe:/o:intel:xeon_gold_5318h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5318h:-:*:*:*:*:*:*:*

Configuration 44:

cpe:/o:intel:xeon_gold_5320h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_5320h:-:*:*:*:*:*:*:*

Configuration 45:

cpe:/o:intel:xeon_gold_6328h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6328h:-:*:*:*:*:*:*:*

Configuration 46:

cpe:/o:intel:xeon_gold_6328hl_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6328hl:-:*:*:*:*:*:*:*

Configuration 47:

cpe:/o:intel:xeon_gold_6348h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_gold_6348h:-:*:*:*:*:*:*:*

Configuration 48:

cpe:/o:intel:xeon_platinum_8353h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8353h:-:*:*:*:*:*:*:*

Configuration 49:

cpe:/o:intel:xeon_platinum_8354h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8354h:-:*:*:*:*:*:*:*

Configuration 50:

cpe:/o:intel:xeon_platinum_8376h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8376h:-:*:*:*:*:*:*:*

Configuration 51:

cpe:/o:intel:xeon_platinum_8376hl_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8376hl:-:*:*:*:*:*:*:*

Configuration 52:

cpe:/o:intel:xeon_platinum_8380h_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8380h:-:*:*:*:*:*:*:*

Configuration 53:

cpe:/o:intel:xeon_platinum_8380hl_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:intel:xeon_platinum_8380hl:-:*:*:*:*:*:*:*

Configuration 54:

cpe:/o:netapp:aff_c190_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_c190:-:*:*:*:*:*:*:*

Configuration 55:

cpe:/o:netapp:aff_a200_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a200:-:*:*:*:*:*:*:*

Configuration 56:

cpe:/o:netapp:aff_a220_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a220:-:*:*:*:*:*:*:*

Configuration 57:

cpe:/o:netapp:aff_a250_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a250:-:*:*:*:*:*:*:*

Configuration 58:

cpe:/o:netapp:aff_a300_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a300:-:*:*:*:*:*:*:*

Configuration 59:

cpe:/o:netapp:aff_a320_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a320:-:*:*:*:*:*:*:*

Configuration 60:

cpe:/o:netapp:aff_a400_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a400:-:*:*:*:*:*:*:*

Configuration 61:

cpe:/o:netapp:aff_a700_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a700:-:*:*:*:*:*:*:*

Configuration 62:

cpe:/o:netapp:aff_a700s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a700s:-:*:*:*:*:*:*:*

Configuration 63:

cpe:/o:netapp:aff_a800_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a800:-:*:*:*:*:*:*:*

Configuration 64:

cpe:/o:netapp:aff_a900_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:aff_a900:-:*:*:*:*:*:*:*

Configuration 65:

cpe:/o:netapp:fas500f_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas500f:-:*:*:*:*:*:*:*

Configuration 66:

cpe:/o:netapp:fas2600_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas2600:-:*:*:*:*:*:*:*

Configuration 67:

cpe:/o:netapp:fas2700_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas2700:-:*:*:*:*:*:*:*

Configuration 68:

cpe:/o:netapp:fas8200_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas8200:-:*:*:*:*:*:*:*

Configuration 69:

cpe:/o:netapp:fas8300_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas8300:-:*:*:*:*:*:*:*

Configuration 70:

cpe:/o:netapp:fas8700_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas8700:-:*:*:*:*:*:*:*

Configuration 71:

cpe:/o:netapp:fas9000_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas9000:-:*:*:*:*:*:*:*

Configuration 72:

cpe:/o:netapp:fas9500_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:fas9500:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

BACK