CVE-2021-33074

Name of the Vulnerable Software and Affected Versions Intel(R) SSD versions (affected versions not specified) Intel(R) SSD DC versions (affected versions not specified) Intel(R) Optane(TM) SSD versions (affected versions not specified)

Description The issue is related to a protection mechanism failure in the firmware of some Intel SSD products, which may allow an unauthenticated user to potentially enable information disclosure via physical access. This is due to a lack of protection for service data. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Intel(R) SSD, consider restricting physical access to the device until a patch is available. For Intel(R) SSD DC, avoid using the device for sensitive data storage until the issue is resolved. For Intel(R) Optane(TM) SSD, as a temporary workaround, consider disabling the device or restricting its use to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.