CVE-2021-0146

Published: 17/11/2021 Updated: 03/05/2022

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

It exists that some Intel processors did not implement sufficient control flow management. A local attacker could use this to cause a denial of service (system crash). (CVE-2021-0127)

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel pentium j6426 firmware -
intel pentium j4205 firmware -
intel pentium j3710 firmware -
intel pentium j2900 firmware -
intel pentium j2850 firmware -
intel celeron j6412 firmware -
intel celeron j6413 firmware -
intel celeron j4125 firmware -
intel celeron j4025 firmware -
intel celeron j3355e firmware -
intel celeron j3455e firmware -
intel celeron j4105 firmware -
intel celeron j4005 firmware -
intel celeron j3455 firmware -
intel celeron j3355 firmware -
intel celeron j3160 firmware -
intel celeron j3060 firmware -
intel celeron j1800 firmware -
intel celeron j1900 firmware -
intel celeron j1850 firmware -
intel celeron j1750 firmware -
intel celeron n6210 firmware -
intel celeron n4505 firmware -
intel celeron n4500 firmware -
intel celeron n5105 firmware -
intel celeron n5100 firmware -
intel celeron n6211 firmware -
intel celeron n4120 firmware -
intel celeron n4020 firmware -
intel celeron n3350e firmware -
intel celeron n4000 firmware -
intel celeron n4100 firmware -
intel celeron n3350 firmware -
intel celeron n3450 firmware -
intel celeron n3060 firmware -
intel celeron n3160 firmware -
intel celeron n3010 firmware -
intel celeron n3000 firmware -
intel celeron n3050 firmware -
intel celeron n3150 firmware -
intel celeron n2808 firmware -
intel celeron n2840 firmware -
intel celeron n2940 firmware -
intel celeron n2807 firmware -
intel celeron n2830 firmware -
intel celeron n2930 firmware -
intel celeron n2806 firmware -
intel celeron n2920 firmware -
intel celeron n2820 firmware -
intel celeron n2815 firmware -
intel celeron n2805 firmware -
intel celeron n2810 firmware -
intel celeron n2910 firmware -
intel atom x5-e3930 firmware -
intel atom x5-e3940 firmware -
intel atom x7-e3950 firmware -
intel pentium n6415 firmware -
intel pentium n4200 firmware -
intel pentium n3710 firmware -
intel pentium n4200e firmware -
intel pentium n3700 firmware -
intel pentium n3540 firmware -
intel pentium n3530 firmware -
intel pentium n3520 firmware -
intel pentium n3510 firmware -
intel pentium silver n6005 firmware -
intel pentium silver n6000 firmware -
intel pentium silver j5040 firmware -
intel pentium silver n5030 firmware -
intel pentium silver j5005 firmware -
intel pentium silver n5000 firmware -
intel atom c3000 firmware -

Several security issues were fixed in Intel Microcode ...

A flaw was found in microcode Under complex microarchitectural conditions, an unexpected code breakpoint may cause a system hang The hang was observed on a Skylake server processor, and subsequent analysis indicated additional potentially affected processors This flaw allows a possible temporary denial of service (TDOS) to occur (CVE-2021-0127) ...

Hardware allows activation of test and debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access ...

Intel's recent Atom, Celeron, Pentium chips can be lulled into a debug mode, potentially revealing system secrets

The Register • Thomas Claburn in San Francisco • 16 Nov 2021

Get our weekly newsletter Testing times for Chipzilla as it emits patches to protect PCs, equipment

Certain Intel processors can be slipped into a test mode, granting access to low-level keys that can be used to, say, unlock encrypted data stored in a stolen laptop or some other device. This vulnerability (CVE-2021-0146), identified by Positive Technologies, a security firm just sanctioned by the US, affects various Intel Atom, Celeron, and Pentium chips that were made in the past few years. It's one of 25 security holes Intel revealed last week. The insecure chip hardware permits the "activat...

CVE-2021-0146

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Recent Articles

References

Vulmon Search

About

Products

Connect