CVE-2021-0003

MEDIUM

Intel Ethernet Controller E810 Firmware - Improper Exception Handling

Title source: rule

Description

Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure via local access.

References (2)

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20210827-0008/

[Vendor Advisory] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00515.html

Scores

CVSS v3 5.5

EPSS 0.0006

EPSS Percentile 18.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-755

Status published

Affected Products (1)

intel/ethernet_controller_e810_firmware < 1.4.11

Timeline

Published Aug 11, 2021

Tracked Since Feb 18, 2026