PT-2021-12897 · Intel · Intel 722 Ethernet Controllers+1

Published

2021-08-11

Updated

2021-09-14

CVE-2021-0084

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA driver versions prior to 1.3.19

Description: The issue is related to improper input validation in the Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA driver, which may allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations: For versions prior to 1.3.19, update to version 1.3.19 or later to resolve the issue. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2021-0084

Affected Products

Intel Ethernet Controllers 800 Series

Intel 722 Ethernet Controllers

PT-2021-12897 · Intel · Intel 722 Ethernet Controllers+1

CVE-2021-0084

Weakness Enumeration

Related Identifiers

Affected Products

References · 7