CVE-2021-33068

Опубликовано: 09 фев. 2022

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

Null pointer dereference in subsystem for Intel(R) AMT before versions 15.0.35 may allow an authenticated user to potentially enable denial of service via network access.

Ссылки

https://security.netapp.com/advisory/ntap-20220210-0006/
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.html
Vendor Advisory
https://security.netapp.com/advisory/ntap-20220210-0006/
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:*

Версия до 15.0.35 (исключая)

Конфигурация 2

cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00451

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

GHSA-95jg-586g-68w9