CVE-2021-33080

Name of the Vulnerable Software and Affected Versions Intel(R) SSD DC versions (affected versions not specified) Intel(R) Optane(TM) SSD versions (affected versions not specified) Intel(R) Optane(TM) SSD DC versions (affected versions not specified)

Description The issue is related to the exposure of sensitive system information due to uncleared debug information in firmware for some Intel products. This may allow an unauthenticated user to potentially enable information disclosure or escalation of privilege via physical access. The vulnerability is associated with a lack of protection for service data.

Recommendations For Intel(R) SSD DC, update the firmware to a version that clears debug information. For Intel(R) Optane(TM) SSD, update the firmware to a version that clears debug information. For Intel(R) Optane(TM) SSD DC, update the firmware to a version that clears debug information. As a temporary workaround, consider restricting physical access to the devices until a patch is available.