CVE-2021-33155 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.7 MEDIUM	ADJACENT_NETWORK	LOW	LOW	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
intel	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	5.7 MEDIUM	ADJACENT_NETWORK	LOW	LOW	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 21%

Vendor	Product	Version
intel	ax211_firmware	𝑥 < 22.100
intel	ax210_firmware	𝑥 < 22.100
intel	ax201_firmware	𝑥 < 22.100
intel	ax200_firmware	𝑥 < 22.100
intel	ac_9560_firmware	𝑥 < 22.100
intel	ac_9462_firmware	𝑥 < 22.100
intel	ac_9461_firmware	𝑥 < 22.100
intel	ac_9260_firmware	𝑥 < 22.100
intel	ac_8265_firmware	𝑥 < 22.100
intel	ac_8260_firmware	𝑥 < 22.100
intel	ac3168_firmware	𝑥 < 22.100
intel	ac_7265_firmware	𝑥 < 22.100
intel	ac_3165_firmware	𝑥 < 22.100
intel	ax1675_firmware	𝑥 < 22.100
intel	ax1650_firmware	𝑥 < 22.100
intel	ac_1550_firmware	𝑥 < 22.100

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

linux-firmware

noble	needs-triage
mantic	ignored
lunar	ignored
kinetic	ignored
jammy	needs-triage
impish	ignored
focal	needs-triage
bionic	needs-triage
xenial	needs-triage
trusty	needs-triage

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00604.html

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00604.html