Home

CVE-2021-0146

Description

Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Risk Information

Base Score
6.8
MODERATE
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.248

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2022:0576-1(SUSE Linux Enterprise Server 12-SP5 ) ucode-intel-20220207-3.38.1.x86_64.rpmLinux
SUSE-SU-2022:0576-1(SUSE Linux Enterprise Server 12-SP5 ) ucode-intel-debuginfo-20220207-3.38.1.x86_64.rpmLinux
SUSE-SU-2022:0576-1(SUSE Linux Enterprise Server 12-SP5 ) ucode-intel-debugsource-20220207-3.38.1.x86_64.rpmLinux
Processor microcode for Intel CPUs (USN-5486-1) intel-microcode_3.20220510.0ubuntu0.18.04.1_i386.debLinux
Processor microcode for Intel CPUs (USN-5486-1) intel-microcode_3.20220510.0ubuntu0.18.04.1_amd64.debLinux
Processor microcode for Intel CPUs (USN-5486-1) intel-microcode_3.20220510.0ubuntu0.20.04.1_amd64.debLinux
Processor microcode for Intel CPUs (USN-5486-1) intel-microcode_3.20210608.2ubuntu1_amd64.debLinux
Processor microcode for Intel CPUs (USN-5486-1) intel-microcode_3.20220510.0ubuntu0.22.04.1_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234