CVE-2021-0003
MEDIUMIntel Ethernet Controller E810 Firmware < 1.4.11 - Authenticated Information Disclosure via Improper Exception Handling
Title source: llmDescription
Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure via local access.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00515.html
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20210827-0008/
Scores
CVSS v3
5.5
EPSS
0.0006
EPSS Percentile
18.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-755
Status
published
Products (1)
intel/ethernet_controller_e810_firmware
< 1.4.11
Published
Aug 11, 2021
Tracked Since
Feb 18, 2026