Vulnerability Description
Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to potentially enable denial of service via local access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Ethernet 500 Series Controllers Driver | < 3.17.3 |
| Intel | Ethernet Connection X540 | - |
| Intel | Ethernet Connection X550 | - |
| Intel | Ethernet Connection X557 | - |
Related Weaknesses (CWE)
References
- https://security.netapp.com/advisory/ntap-20211210-0005/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00555.Vendor Advisory
- https://security.netapp.com/advisory/ntap-20211210-0005/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00555.Vendor Advisory
FAQ
What is CVE-2021-33098?
CVE-2021-33098 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to potentially enable denial of service via local access.
How severe is CVE-2021-33098?
CVE-2021-33098 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-33098?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Ethernet 500 Series Controllers Driver, Intel Ethernet Connection X540, Intel Ethernet Connection X550, Intel Ethernet Connection X557.