Vulnerability Details : CVE-2021-0003
Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure via local access.
Vulnerability category: Information leak
Products affected by CVE-2021-0003
- cpe:2.3:o:intel:ethernet_controller_e810_firmware:*:*:*:*:*:linux:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-0003
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 10 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-0003
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:N |
3.9
|
2.9
|
NIST | |
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2021-0003
-
The product does not handle or incorrectly handles an exceptional condition.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-0003
-
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00515.html
INTEL-SA-00515Vendor Advisory
-
https://security.netapp.com/advisory/ntap-20210827-0008/
Intel SA-00515 Ethernet Controller Vulnerabilities in NetApp Products | NetApp Product SecurityThird Party Advisory
Jump to