CVE-2021-33146 MEDIUM

CVE-2021-33146

Vendor N/A
Product Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware
Weakness CWE-20 · Input validation
Published May 16, 2024
Last update August 3, 2024

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Improper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow an unauthenticated user to potentially enable information disclosure via network access.

Key dates

02Disclosure timeline

May 16, 2024 CVE published
August 3, 2024 Record updated