Vulnerability Description
Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Ax210 Firmware | < 22.40 |
| Intel | Ax210 | - |
| Intel | Ax201 Firmware | < 22.40 |
| Intel | Ax201 | - |
| Intel | Ax200 Firmware | < 22.40 |
| Intel | Ax200 | - |
| Intel | Ac 9560 Firmware | < 22.40 |
| Intel | Ac 9560 | - |
| Intel | Ac 9462 Firmware | < 22.40 |
| Intel | Ac 9462 | - |
| Intel | Ac 9461 Firmware | < 22.40 |
| Intel | Ac 9461 | - |
| Intel | 9260 Firmware | - |
| Intel | Ac 9260 Firmware | < 22.40 |
| Intel | Ac 9260 | - |
| Intel | Ac 8265 Firmware | < 22.40 |
| Intel | Ac 8265 | - |
| Intel | Ac 8260 Firmware | < 22.40 |
| Intel | Ac 8260 | - |
| Intel | Ac 3168 Firmware | < 22.40 |
Related Weaknesses (CWE)
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00509.Vendor Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00509.Vendor Advisory
FAQ
What is CVE-2021-0071?
CVE-2021-0071 is a vulnerability with a CVSS score of 8.8 (HIGH). Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
How severe is CVE-2021-0071?
CVE-2021-0071 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-0071?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Ax210 Firmware, Intel Ax210, Intel Ax201 Firmware, Intel Ax201, Intel Ax200 Firmware.