Strix
26.1K

CVE-2021-0116

HIGHCVSS 7.8/10EPSS 0.31%

Last modified

CVE-2021-0116 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.. EPSS estimates a 0.31% chance of exploitation in the next 30 days.

Description

Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Metrics

CVSS 3.1
7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.31%

22.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
NetappCloud BackupAll versions
NetappFas\/Aff BiosAll versions
IntelXeon Bronze 3206r FirmwareAll versions
IntelXeon Gold 5218r FirmwareAll versions
IntelXeon Gold 5220r FirmwareAll versions
IntelXeon Gold 6208u FirmwareAll versions
IntelXeon Gold 6226r FirmwareAll versions
IntelXeon Gold 6230r FirmwareAll versions
IntelXeon Gold 6238r FirmwareAll versions
IntelXeon Gold 6240r FirmwareAll versions
IntelXeon Gold 6242r FirmwareAll versions
IntelXeon Gold 6246r FirmwareAll versions
IntelXeon Gold 6248r FirmwareAll versions
IntelXeon Gold 6250 FirmwareAll versions
IntelXeon Gold 6250l FirmwareAll versions
IntelXeon Gold 6256 FirmwareAll versions
IntelXeon Gold 6258r FirmwareAll versions
IntelXeon Silver 4210r FirmwareAll versions
IntelXeon Silver 4210t FirmwareAll versions
IntelXeon Silver 4214r FirmwareAll versions
IntelXeon Silver 4215r FirmwareAll versions
IntelXeon Platinum 9221 FirmwareAll versions
IntelXeon Platinum 9222 FirmwareAll versions
IntelXeon Bronze 3204 FirmwareAll versions
IntelXeon Gold 5215 FirmwareAll versions
IntelXeon Gold 5215l FirmwareAll versions
IntelXeon Gold 5217 FirmwareAll versions
IntelXeon Gold 5218 FirmwareAll versions
IntelXeon Gold 5218b FirmwareAll versions
IntelXeon Gold 5218n FirmwareAll versions
IntelXeon Gold 5218t FirmwareAll versions
IntelXeon Gold 5220 FirmwareAll versions
IntelXeon Gold 5220s FirmwareAll versions
IntelXeon Gold 5220t FirmwareAll versions
IntelXeon Gold 5222 FirmwareAll versions
IntelXeon Gold 6209u FirmwareAll versions
IntelXeon Gold 6210u FirmwareAll versions
IntelXeon Gold 6212u FirmwareAll versions
IntelXeon Gold 6222v FirmwareAll versions
IntelXeon Gold 6226 FirmwareAll versions
IntelXeon Gold 6230 FirmwareAll versions
IntelXeon Gold 6230n FirmwareAll versions
IntelXeon Gold 6230t FirmwareAll versions
IntelXeon Gold 6234 FirmwareAll versions
IntelXeon Gold 6238 FirmwareAll versions
IntelXeon Gold 6238l FirmwareAll versions
IntelXeon Gold 6238t FirmwareAll versions
IntelXeon Gold 6240 FirmwareAll versions
IntelXeon Gold 6240l FirmwareAll versions
IntelXeon Gold 6240y FirmwareAll versions

Showing 50 of 681 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-0116?
Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.
How severe is CVE-2021-0116?
CVE-2021-0116 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.31% probability of exploitation in the next 30 days.
How do I fix CVE-2021-0116?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-0116?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST