Vulnerability Description
Null pointer dereference in subsystem for Intel(R) AMT before versions 15.0.35 may allow an authenticated user to potentially enable denial of service via network access.
CVSS Score
6.5
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Active Management Technology Firmware | < 15.0.35 |
| Netapp | Cloud Backup | - |
Related Weaknesses (CWE)
References
- https://security.netapp.com/advisory/ntap-20220210-0006/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.Vendor Advisory
- https://security.netapp.com/advisory/ntap-20220210-0006/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.Vendor Advisory
FAQ
What is CVE-2021-33068?
CVE-2021-33068 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Null pointer dereference in subsystem for Intel(R) AMT before versions 15.0.35 may allow an authenticated user to potentially enable denial of service via network access.
How severe is CVE-2021-33068?
CVE-2021-33068 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-33068?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Active Management Technology Firmware, Netapp Cloud Backup.