CVE-2021-33076 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.3 MEDIUM	PHYSICAL	LOW	NONE	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
intel	CNA	5.3 MEDIUM	PHYSICAL	LOW	NONE	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 25%

Vendor	Product	Version
intel	ssd_600p_firmware	𝑥 < 122c
intel	ssd_660p_firmware	𝑥 < 005c
intel	ssd_665p_firmware	𝑥 < 002c
intel	ssd_670p_firmware	𝑥 < 003c
intel	ssd_700p_firmware	𝑥 < 005c
intel	ssd_760p_firmware	𝑥 < 006c
intel	ssd_d5-p4326_firmware	𝑥 < 8dv1md58
intel	ssd_d7_p5600_firmware	-
intel	ssd_dc_p3100_firmware	𝑥 < 119d
intel	ssd_dc_p4101_firmware	𝑥 < 009d
intel	ssd_e_6000p_firmware	𝑥 < 122e
intel	ssd_e_6100p_firmware	𝑥 < 006e
intel	ssd_pro_6000p_firmware	𝑥 < 132p
intel	ssd_pro_7600p_firmware	𝑥 < 006p

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-287 - Improper Authentication
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

References

https://www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf

https://www.solidigm.com/content/dam/newco-aem-site/master/site/support/Solidigm%20SA-000563%20rev1.1.pdf