Vulnerability Description
Improper input validation in the Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA driver before version 1.3.19 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Ethernet Controller E810 Firmware | < 1.4.11 |
| Intel | Ethernet Controller E810 | - |
| Intel | X722Da2 Firmware | < 1.3.19 |
| Intel | X722Da2 | - |
| Intel | X722Da4Fh Firmware | < 1.3.19 |
| Intel | X722Da4Fh | - |
| Intel | X722Da4G1P5 Firmware | < 1.3.19 |
| Intel | X722Da4G1P5 | - |
Related Weaknesses (CWE)
References
- https://security.netapp.com/advisory/ntap-20210827-0008/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00515.Vendor Advisory
- https://security.netapp.com/advisory/ntap-20210827-0008/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00515.Vendor Advisory
FAQ
What is CVE-2021-0084?
CVE-2021-0084 is a vulnerability with a CVSS score of 7.8 (HIGH). Improper input validation in the Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA driver before version 1.3.19 may allow an authenticated user to potentially enable escalation of privilege...
How severe is CVE-2021-0084?
CVE-2021-0084 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-0084?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Ethernet Controller E810 Firmware, Intel Ethernet Controller E810, Intel X722Da2 Firmware, Intel X722Da2, Intel X722Da4Fh Firmware.