CWE
287
Advisory Published
Updated

CVE-2021-33076

First published: Tue Sep 20 2022(Updated: )

Improper authentication in firmware for some Intel(R) SSD DC Products may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Credit: secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel Ssd 600p Firmware<122c
Intel Ssd 600p
Intel Ssd 660p Firmware<005c
Intel Ssd 660p
Intel Ssd 665p Firmware<002c
Intel Ssd 665p
Intel Ssd 670p Firmware<003c
Intel Ssd 670p
Intel Ssd 700p Firmware<005c
Intel Ssd 700p
Intel Ssd 760p Firmware<006c
Intel Ssd 760p
Intel Ssd D3-s4510 M.2 Firmware<xc311132
Intel Ssd D3-s4510 M.2
Intel Ssd Dc P4510 Sff Firmware<vdv10184
Intel Ssd Dc P4510 Sff
Intel Ssd D3-s4610 M.2 Firmware<xc311132
Intel Ssd D3-s4610 M.2
Intel Ssd Dc P4610 Sff Firmware<vdv10184
Intel Ssd Dc P4610 Sff
Intel Ssd D5-p4326 Firmware<8dv1md58
Intel Ssd D5-p4326
Intel Ssd D5-p5316 Firmware<acv10200
Intel Ssd D5-p5316
Intel Ssd D7 P5510 Firmware<jcv10200
Intel Ssd D7 P5510
Intel Ssd D7 P5600 Firmware
Intel Ssd D7 P5600
Intel Ssd Dc D4512 Firmware<vpv1et0k
Intel Ssd Dc D4512
Intel Ssd Dc P3100 Firmware<119d
Intel Ssd Dc P3100
Intel Ssd Dc P4101 Firmware<009d
Intel Ssd Dc P4101
Intel Ssd Dc P4500 Firmware<qdv101b1
Intel Ssd Dc P4500
Intel Ssd Dc P4501 Firmware<qdv101b1
Intel Ssd Dc P4501
Intel Ssd Dc P4510 Edsff Firmware<vev10284
Intel Ssd Dc P4510 Edsff
Intel Ssd Dc P4511 Edsff Firmware<vev10284
Intel Ssd Dc P4511 Edsff
Intel Ssd Dc P4511 M.2 Firmware<vdc1lz37
Intel Ssd Dc P4511 M.2
Intel Ssd Dc P4600 Firmware<qdv101b1
Intel Ssd Dc P4600
Intel Ssd Dc P4608 Firmware<qdv101b1
Intel Ssd Dc P4608
Intel Ssd Dc S4500 Firmware<scv10150
Intel Ssd Dc S4500
Intel Ssd Dc S4600 Firmware<scv10150
Intel Ssd Dc S4600
Intel Ssd E 6000p Firmware<122e
Intel Ssd E 6000p
Intel Ssd E 6100p Firmware<006e
Intel Ssd E 6100p
Intel Ssd Pro 6000p Firmware<132p
Intel Ssd Pro 6000p
Intel Ssd Pro 7600p Firmware<006p
Intel Ssd Pro 7600p

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is CVE-2021-33076 about?

    CVE-2021-33076 is about improper authentication in firmware for some Intel(R) SSD DC Products that may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

  • What is the severity of CVE-2021-33076?

    The severity of CVE-2021-33076 is rated as medium with a CVSS score of 6.8.

  • How can an unauthenticated user exploit CVE-2021-33076?

    An unauthenticated user can potentially enable escalation of privilege by taking advantage of the improper authentication in the affected Intel(R) SSD DC Products firmware.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203