Strix
26.1K

CVE-2021-0157

MEDIUMCVSS 6.7/10EPSS 3.09%

Last modified

CVE-2021-0157 is a medium-severity vulnerability rated 6.7/10 on the CVSS scale. Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.. EPSS estimates a 3.09% chance of exploitation in the next 30 days.

Description

Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Metrics

CVSS 3.1
6.7/10

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
3.09%

86.1th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
IntelCeleron N2805All versions
IntelCeleron N2806All versions
IntelCeleron N2807All versions
IntelCeleron N2808All versions
IntelCeleron N2810All versions
IntelCeleron N2815All versions
IntelCeleron N2820All versions
IntelCeleron N2830All versions
IntelCeleron N2840All versions
IntelCeleron N2910All versions
IntelCeleron N2920All versions
IntelCeleron N2930All versions
IntelCeleron N2940All versions
IntelCeleron N3000All versions
IntelCeleron N3010All versions
IntelCeleron N3050All versions
IntelCeleron N3060All versions
IntelCeleron N3150All versions
IntelCeleron N3160All versions
IntelCeleron N3350All versions
IntelCeleron N3350eAll versions
IntelCeleron N3450All versions
IntelCeleron N4000All versions
IntelCeleron N4020All versions
IntelCeleron N4100All versions
IntelCeleron N4120All versions
IntelCeleron N4500All versions
IntelCeleron N4505All versions
IntelCeleron N5100All versions
IntelCeleron N5105All versions
IntelCeleron N6210All versions
IntelCeleron N6211All versions
IntelCore I3-1000g1All versions
IntelCore I3-1000g4All versions
IntelCore I3-1005g1All versions
IntelCore I3-10100All versions
IntelCore I3-10100eAll versions
IntelCore I3-10100fAll versions
IntelCore I3-10100tAll versions
IntelCore I3-10100teAll versions
IntelCore I3-10100yAll versions
IntelCore I3-10105All versions
IntelCore I3-10105fAll versions
IntelCore I3-10105tAll versions
IntelCore I3-10110uAll versions
IntelCore I3-10110yAll versions
IntelCore I3-10300All versions
IntelCore I3-10300tAll versions
IntelCore I3-10305All versions
IntelCore I3-10305tAll versions

Showing 50 of 484 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-0157?
Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
How severe is CVE-2021-0157?
CVE-2021-0157 has a CVSS score of 6.7/10 (MEDIUM severity). The EPSS model estimates a 3.09% probability of exploitation in the next 30 days.
How do I fix CVE-2021-0157?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-0157?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST