What is CVE-2021-33074?

CVE-2021-33074 is a vulnerability in the firmware for some Intel(R) SSD, Intel(R) SSD DC, and Intel(R) Optane(TM) SSD products that may allow an unauthenticated user to potentially enable information disclosure via physical access.

How severe is CVE-2021-33074?

CVE-2021-33074 has a severity rating of 4.6 out of 10, indicating a medium severity.

Which software products are affected by CVE-2021-33074?

CVE-2021-33074 affects firmware versions of Intel Optane SSD DC P4800x, Intel Optane SSD DC P4801x, Intel Optane SSD P5800x, Intel Optane Memory H20 With Solid State Storage, Intel Optane Memory H10 With Solid State Storage, Intel Optane SSD 905p, and Intel Optane SSD 900p.

How can an unauthenticated user exploit CVE-2021-33074?

An unauthenticated user can potentially enable information disclosure by physically accessing the affected Intel SSDs and Intel Optane SSDs.

Where can I find more information about CVE-2021-33074?

You can find more information about CVE-2021-33074 on the Intel Security Center Advisory and Solidigm websites.

Vulnerability/
CVE-2021-33074

medium

4.6

12/5/2022

6/10/2022

CVE-2021-33074

First published: Thu May 12 2022(Updated: )

Protection mechanism failure in firmware for some Intel(R) SSD, Intel(R) SSD DC and Intel(R) Optane(TM) SSD Products may allow an unauthenticated user to potentially enable information disclosure via physical access.

Credit: secure@intel.com

Affected Software	Affected Version	How to fix
Intel Optane Ssd Dc P4800x Firmware	<e2010600
Intel Optane Ssd Dc P4800x
Intel Optane Ssd Dc P4801x Firmware	<e2010600
Intel Optane Ssd Dc P4801x
Intel Optane Ssd P5800x Firmware	<l0310200
Intel Optane Ssd P5800x
Intel Optane Memory H20 With Solid State Storage Firmware	<pgf028k
Intel Optane Memory H20 With Solid State Storage
Intel Optane Memory H10 With Solid State Storage Firmware	<tgf061k
Intel Optane Memory H10 With Solid State Storage
Intel Optane Ssd 905p Firmware	<fw600
Intel Optane Ssd 905p
Intel Optane Ssd 900p Firmware	<fw600
Intel Optane Ssd 900p

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2021-33074?
CVE-2021-33074 is a vulnerability in the firmware for some Intel(R) SSD, Intel(R) SSD DC, and Intel(R) Optane(TM) SSD products that may allow an unauthenticated user to potentially enable information disclosure via physical access.
How severe is CVE-2021-33074?
CVE-2021-33074 has a severity rating of 4.6 out of 10, indicating a medium severity.
Which software products are affected by CVE-2021-33074?
CVE-2021-33074 affects firmware versions of Intel Optane SSD DC P4800x, Intel Optane SSD DC P4801x, Intel Optane SSD P5800x, Intel Optane Memory H20 With Solid State Storage, Intel Optane Memory H10 With Solid State Storage, Intel Optane SSD 905p, and Intel Optane SSD 900p.
How can an unauthenticated user exploit CVE-2021-33074?
An unauthenticated user can potentially enable information disclosure by physically accessing the affected Intel SSDs and Intel Optane SSDs.
Where can I find more information about CVE-2021-33074?
You can find more information about CVE-2021-33074 on the Intel Security Center Advisory and Solidigm websites.