CVE-2021-0110

Improper access control in some Intel(R) Thunderbolt(TM) Windows DCH Drivers before version 1.41.1054.0 may allow unauthenticated user to potentially enable denial of service via local access.

CVSS v3 5.5 MEDIUM
CVSS v2.0 2.1 LOW

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00533.html	Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00533.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:intel:thunderbolt_dch_driver:*:*:*:*:*:windows:*:*

OR	cpe:2.3:h:intel:core_i3-10100y:-:::::::*
	cpe:2.3:h:intel:core_i3-10110u:-:::::::*
	cpe:2.3:h:intel:core_i3-10110y:-:::::::*
	cpe:2.3:h:intel:core_i3-1110g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1115g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1120g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1125g4:-:::::::*
	cpe:2.3:h:intel:core_i5-10210u:-:::::::*
	cpe:2.3:h:intel:core_i5-10210y:-:::::::*
	cpe:2.3:h:intel:core_i5-10310u:-:::::::*
	cpe:2.3:h:intel:core_i5-10310y:-:::::::*
	cpe:2.3:h:intel:core_i5-10610u:-:::::::*
	cpe:2.3:h:intel:core_i5-1130g7:-:::::::*
	cpe:2.3:h:intel:core_i5-1135g7:-:::::::*
	cpe:2.3:h:intel:core_i7-10510u:-:::::::*
	cpe:2.3:h:intel:core_i7-10510y:-:::::::*
	cpe:2.3:h:intel:core_i7-10710u:-:::::::*
	cpe:2.3:h:intel:core_i7-10810u:-:::::::*
	cpe:2.3:h:intel:core_i7-1160g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1165g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1185g7:-:::::::*
	cpe:2.3:h:intel:jhl6240:-:::::::*
	cpe:2.3:h:intel:jhl6340:-:::::::*
	cpe:2.3:h:intel:jhl6540:-:::::::*
	cpe:2.3:h:intel:jhl7340:-:::::::*
	cpe:2.3:h:intel:jhl7440:-:::::::*
	cpe:2.3:h:intel:jhl7540:-:::::::*
	cpe:2.3:h:intel:jhl8440:-:::::::*
	cpe:2.3:h:intel:jhl8540:-:::::::*

History

21 Nov 2024, 05:41

Type	Values Removed	Values Added
References	~~() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00533.html - Vendor Advisory~~	() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00533.html - Vendor Advisory

Information

Published : 2021-11-17 20:15

Updated : 2024-11-21 05:41

NVD link : CVE-2021-0110

Mitre link : CVE-2021-0110

CVE.ORG link : CVE-2021-0110

JSON object : View

Products Affected

intel

core_i7-10510y
core_i7-10810u
core_i3-10110u
jhl6540
jhl6240
core_i3-1115g4
core_i7-1185g7
core_i5-10210y
jhl8440
core_i5-10610u
core_i5-1130g7
core_i3-10100y
jhl7440
jhl8540
core_i5-10310u
core_i3-1110g4
core_i5-10310y
thunderbolt_dch_driver
core_i7-10510u
core_i3-1125g4
core_i3-10110y
core_i3-1120g4
core_i7-1165g7
jhl7540
core_i7-10710u
core_i5-10210u
core_i7-1160g7
jhl7340
jhl6340
core_i5-1135g7

CWE

NVD-CWE-Other

5.5 /10

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

2.1 /10

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2021-0110

5.5^/10

2.1^/10

Attach tags to `CVE-2021-0110`