CVE-2021-33120

moderate-risk
Published 2022-02-09

Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access.

Do I need to act?

-
0.69% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.4/10 Medium
NETWORK / LOW complexity

Affected Products (20)

Atom P5942B Firmware
Atom P5931B Firmware
Atom P5962B Firmware
Atom P5921B Firmware
Xeon D1700 Firmware
Xeon D2700 Firmware
Core I5-L16G7 Firmware
Core I3-L13G4 Firmware
Pentium J6425 Firmware
Pentium N6415 Firmware
Celeron J6413 Firmware
Celeron N6211 Firmware
Atom X6413E Firmware
Atom X6425Re Firmware
Atom X6427Fe Firmware
Atom X6212Re Firmware
Atom X6200Fe Firmware
Atom X6211E Firmware
Atom X6425E Firmware
Pentium Silver N6005 Firmware

Affected Vendors

Intel

References (2)

Mitigation https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00589....
Mitigation https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00589....
44
/ 100
moderate-risk
Severity 21/34 · High
Exploitability 2/34 · Minimal
Exposure 21/34 · High