CVE-2021-33117
First published: Thu May 12 2022(Updated: )
Improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7, may allow a local attacker to potentially enable information disclosure via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Intel BIOS Firmware | <mr7 | |
| Any of | ||
| Intel Xeon Gold 5315y Firmware | ||
| Intel Xeon Gold 5317 Firmware | ||
| Intel Xeon Gold 5318h Firmware | ||
| Intel Xeon Gold 5318n Firmware | ||
| Intel Xeon Gold 5318s Firmware | ||
| Intel Xeon Gold 5318y Firmware | ||
| Intel Xeon Gold 5320 Firmware | ||
| Intel Xeon Gold 5320h Firmware | ||
| Intel Xeon Gold 5320t Firmware | ||
| Intel Xeon Gold 6312U Firmware | ||
| Intel Xeon Gold 6314u Firmware | ||
| Intel Xeon Gold 6326 Firmware | ||
| Intel Xeon Gold 6328H Firmware | ||
| Intel Xeon Gold 6328HL | ||
| Intel Xeon Gold 6330 Firmware | ||
| Intel Xeon Gold 6330H Firmware | ||
| Intel Xeon Gold 6330n Firmware | ||
| Intel Xeon Gold 6334 Firmware | ||
| Intel Xeon Gold 6336Y | ||
| Intel Xeon Gold 6338 | ||
| Intel Xeon Gold 6338n Firmware | ||
| Intel Xeon Gold 6338T | ||
| Intel Xeon Gold 6342 Firmware | ||
| Intel Xeon Gold 6346 Firmware | ||
| Intel Xeon Gold 6348 Firmware | ||
| Intel Xeon Gold 6348H | ||
| Intel Xeon Gold 6354 Firmware | ||
| Intel Xeon Platinum 8351n | ||
| Intel Xeon Platinum 8352M | ||
| Intel Xeon Platinum 8352S | ||
| Intel Xeon Platinum 8352v | ||
| Intel Xeon Platinum 8352y Firmware | ||
| Intel Xeon Platinum 8353h Firmware | ||
| Intel Xeon Platinum 8354H | ||
| Intel Xeon Platinum 8356h Firmware | ||
| Intel Xeon Platinum 8358 | ||
| Intel Xeon Platinum Processors | ||
| Intel Xeon Platinum 8360h Firmware | ||
| Intel Xeon Platinum 8360HL | ||
| Intel Xeon Platinum 8360Y | ||
| Intel Xeon Platinum Processors | ||
| Intel Xeon Platinum 8368 | ||
| Intel Xeon Platinum 8368q Firmware | ||
| Intel Xeon Platinum 8376H Firmware | ||
| Intel Xeon Platinum 8376hl Firmware | ||
| Intel Xeon Platinum 8380 | ||
| Intel Xeon Platinum 8380H Firmware | ||
| Intel Xeon Platinum 8380hl | ||
| Intel Xeon Silver 4309Y | ||
| Intel Xeon Silver 4310 | ||
| Intel Xeon Silver 4310t Firmware | ||
| Intel Xeon Silver 4314 Firmware | ||
| Intel Xeon Silver 4316 | ||
| NetApp FAS/AFF BIOS | ||
| Intel BIOS Firmware | <mr7 | |
| Intel Xeon Gold 5315y Firmware | ||
| Intel Xeon Gold 5317 Firmware | ||
| Intel Xeon Gold 5318h Firmware | ||
| Intel Xeon Gold 5318n Firmware | ||
| Intel Xeon Gold 5318s Firmware | ||
| Intel Xeon Gold 5318y Firmware | ||
| Intel Xeon Gold 5320 Firmware | ||
| Intel Xeon Gold 5320h Firmware | ||
| Intel Xeon Gold 5320t Firmware | ||
| Intel Xeon Gold 6312U Firmware | ||
| Intel Xeon Gold 6314u Firmware | ||
| Intel Xeon Gold 6326 Firmware | ||
| Intel Xeon Gold 6328H Firmware | ||
| Intel Xeon Gold 6328HL | ||
| Intel Xeon Gold 6330 Firmware | ||
| Intel Xeon Gold 6330H Firmware | ||
| Intel Xeon Gold 6330n Firmware | ||
| Intel Xeon Gold 6334 Firmware | ||
| Intel Xeon Gold 6336Y | ||
| Intel Xeon Gold 6338 | ||
| Intel Xeon Gold 6338n Firmware | ||
| Intel Xeon Gold 6338T | ||
| Intel Xeon Gold 6342 Firmware | ||
| Intel Xeon Gold 6346 Firmware | ||
| Intel Xeon Gold 6348 Firmware | ||
| Intel Xeon Gold 6348H | ||
| Intel Xeon Gold 6354 Firmware | ||
| Intel Xeon Platinum 8351n | ||
| Intel Xeon Platinum 8352M | ||
| Intel Xeon Platinum 8352S | ||
| Intel Xeon Platinum 8352v | ||
| Intel Xeon Platinum 8352y Firmware | ||
| Intel Xeon Platinum 8353h Firmware | ||
| Intel Xeon Platinum 8354H | ||
| Intel Xeon Platinum 8356h Firmware | ||
| Intel Xeon Platinum 8358 | ||
| Intel Xeon Platinum Processors | ||
| Intel Xeon Platinum 8360h Firmware | ||
| Intel Xeon Platinum 8360HL | ||
| Intel Xeon Platinum 8360Y | ||
| Intel Xeon Platinum Processors | ||
| Intel Xeon Platinum 8368 | ||
| Intel Xeon Platinum 8368q Firmware | ||
| Intel Xeon Platinum 8376H Firmware | ||
| Intel Xeon Platinum 8376hl Firmware | ||
| Intel Xeon Platinum 8380 | ||
| Intel Xeon Platinum 8380H Firmware | ||
| Intel Xeon Platinum 8380hl | ||
| Intel Xeon Silver 4309Y | ||
| Intel Xeon Silver 4310 | ||
| Intel Xeon Silver 4310t Firmware | ||
| Intel Xeon Silver 4314 Firmware | ||
| Intel Xeon Silver 4316 | ||
| debian/intel-microcode | 3.20240813.1~deb11u1 3.20250211.1~deb11u1 3.20250211.1~deb12u1 3.20231114.1~deb12u1 3.20250211.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://security.netapp.com/advisory/ntap-20220818-0001/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00586.html
- https://launchpad.net/bugs/cve/CVE-2021-33117
- https://security-tracker.debian.org/tracker/CVE-2021-33117
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33117
- https://nvd.nist.gov/vuln/detail/CVE-2021-33117
- https://ubuntu.com/security/CVE-2021-33117
Frequently Asked Questions
What is CVE-2021-33117?
CVE-2021-33117 is a vulnerability related to improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7.
How does CVE-2021-33117 impact systems?
CVE-2021-33117 may allow a local attacker to potentially enable information disclosure via local access.
Which software versions are affected by CVE-2021-33117?
The affected software versions include 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7.
How can I fix CVE-2021-33117 on Ubuntu?
To fix CVE-2021-33117 on Ubuntu, update the 'intel-microcode' package to version 3.20220207.1 or later.
How can I fix CVE-2021-33117 on Debian?
To fix CVE-2021-33117 on Debian, update the 'intel-microcode' package to one of the following versions: 3.20220510.1~deb10u1, 3.20230808.1~deb10u1, 3.20230214.1~deb11u1, 3.20230808.1~deb11u1, 3.20230512.1, or 3.20230808.1~deb12u1.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/description
- agent/first-publish-date
- agent/trending
- agent/last-modified-date
- agent/source
- agent/author
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/tags
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/debian
- vendor/intel
- canonical/intel bios firmware
- canonical/intel xeon gold 5315y firmware
- canonical/intel xeon gold 5317 firmware
- canonical/intel xeon gold 5318h firmware
- canonical/intel xeon gold 5318n firmware
- canonical/intel xeon gold 5318s firmware
- canonical/intel xeon gold 5318y firmware
- canonical/intel xeon gold 5320 firmware
- canonical/intel xeon gold 5320h firmware
- canonical/intel xeon gold 5320t firmware
- canonical/intel xeon gold 6312u firmware
- canonical/intel xeon gold 6314u firmware
- canonical/intel xeon gold 6326 firmware
- canonical/intel xeon gold 6328h firmware
- canonical/intel xeon gold 6328hl
- canonical/intel xeon gold 6330 firmware
- canonical/intel xeon gold 6330h firmware
- canonical/intel xeon gold 6330n firmware
- canonical/intel xeon gold 6334 firmware
- canonical/intel xeon gold 6336y
- canonical/intel xeon gold 6338
- canonical/intel xeon gold 6338n firmware
- canonical/intel xeon gold 6338t
- canonical/intel xeon gold 6342 firmware
- canonical/intel xeon gold 6346 firmware
- canonical/intel xeon gold 6348 firmware
- canonical/intel xeon gold 6348h
- canonical/intel xeon gold 6354 firmware
- canonical/intel xeon platinum 8351n
- canonical/intel xeon platinum 8352m
- canonical/intel xeon platinum 8352s
- canonical/intel xeon platinum 8352v
- canonical/intel xeon platinum 8352y firmware
- canonical/intel xeon platinum 8353h firmware
- canonical/intel xeon platinum 8354h
- canonical/intel xeon platinum 8356h firmware
- canonical/intel xeon platinum 8358
- canonical/intel xeon platinum processors
- canonical/intel xeon platinum 8360h firmware
- canonical/intel xeon platinum 8360hl
- canonical/intel xeon platinum 8360y
- canonical/intel xeon platinum 8368
- canonical/intel xeon platinum 8368q firmware
- canonical/intel xeon platinum 8376h firmware
- canonical/intel xeon platinum 8376hl firmware
- canonical/intel xeon platinum 8380
- canonical/intel xeon platinum 8380h firmware
- canonical/intel xeon platinum 8380hl
- canonical/intel xeon silver 4309y
- canonical/intel xeon silver 4310
- canonical/intel xeon silver 4310t firmware
- canonical/intel xeon silver 4314 firmware
- canonical/intel xeon silver 4316
- vendor/netapp
- canonical/netapp fas/aff bios