Intel Processors privilege escalation | CVE-2021-0103
NAME
Intel Processors privilege escalation
- Platforms Affected:
Intel Xeon Processor D Family
Intel Xeon Scalable Processor
Intel Xeon Processor E Family
Intel 2nd Generation Intel Xeon Scalable Processors
Intel Xeon Processor W Family
Intel 8th Generation Core Processor Family
Intel 10th Generation Core Processor Family
Intel 9th Generation Core Processor Family
Intel 7th Generation Core Processor Family
Intel 6th Generation Core Processor Family
Intel 11th Generation Core Processor Family
Intel Atom Processor C3XXX Family - Risk Level:
8.2 - Exploitability:
Unproven - Consequences:
Gain Privileges
DESCRIPTION
Intel Processors could allow a local authenticated attacker to gain elevated privileges on the system, caused by insufficient control flow management in the firmware. By executing a specially-crafted program, an attacker could exploit this vulnerability to escalate privileges.
CVSS 3.0 Information
- Privileges Required: High
- User Interaction: None
- Scope: Changed
- Access Vector: Local
- Access Complexity: Low
- Confidentiality Impact: High
- Integrity Impact: High
- Availability Impact: High
- Remediation Level: Official Fix
MITIGATION
Refer to INTEL-SA-00527 for patch, upgrade or suggested workaround information. See References.
- Reference Link:
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html - Reference Link:
https://support.lenovo.com/us/en/product_security/LEN-77639
If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.
