Description
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00525.html
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html
Scores
CVSS v3
6.7
EPSS
0.0033
EPSS Percentile
24.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-1188
Status
published
Products (50)
intel/atom_c3000
intel/atom_c3308
intel/atom_c3336
intel/atom_c3338
intel/atom_c3338r
intel/atom_c3436l
intel/atom_c3508
intel/atom_c3538
intel/atom_c3558
intel/atom_c3558r
... and 40 more
Published
Jul 14, 2021
Tracked Since
Feb 18, 2026