Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv3

CVE-2021-0146

Published: 17/11/2021 Updated: 03/05/2022
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Pentium J6426 Firmware

Vulnerability Summary

It exists that some Intel processors did not implement sufficient control flow management. A local attacker could use this to cause a denial of service (system crash). (CVE-2021-0127)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

intel pentium_j6426_firmware -

intel pentium_j4205_firmware -

intel pentium_j3710_firmware -

intel pentium_j2900_firmware -

intel pentium_j2850_firmware -

intel celeron_j6412_firmware -

intel celeron_j6413_firmware -

intel celeron_j4125_firmware -

intel celeron_j4025_firmware -

intel celeron_j3355e_firmware -

intel celeron_j3455e_firmware -

intel celeron_j4105_firmware -

intel celeron_j4005_firmware -

intel celeron_j3455_firmware -

intel celeron_j3355_firmware -

intel celeron_j3160_firmware -

intel celeron_j3060_firmware -

intel celeron_j1800_firmware -

intel celeron_j1900_firmware -

intel celeron_j1850_firmware -

intel celeron_j1750_firmware -

intel celeron_n6210_firmware -

intel celeron_n4505_firmware -

intel celeron_n4500_firmware -

intel celeron_n5105_firmware -

intel celeron_n5100_firmware -

intel celeron_n6211_firmware -

intel celeron_n4120_firmware -

intel celeron_n4020_firmware -

intel celeron_n3350e_firmware -

intel celeron_n4000_firmware -

intel celeron_n4100_firmware -

intel celeron_n3350_firmware -

intel celeron_n3450_firmware -

intel celeron_n3060_firmware -

intel celeron_n3160_firmware -

intel celeron_n3010_firmware -

intel celeron_n3000_firmware -

intel celeron_n3050_firmware -

intel celeron_n3150_firmware -

intel celeron_n2808_firmware -

intel celeron_n2840_firmware -

intel celeron_n2940_firmware -

intel celeron_n2807_firmware -

intel celeron_n2830_firmware -

intel celeron_n2930_firmware -

intel celeron_n2806_firmware -

intel celeron_n2920_firmware -

intel celeron_n2820_firmware -

intel celeron_n2815_firmware -

intel celeron_n2805_firmware -

intel celeron_n2810_firmware -

intel celeron_n2910_firmware -

intel atom_x5-e3930_firmware -

intel atom_x5-e3940_firmware -

intel atom_x7-e3950_firmware -

intel pentium_n6415_firmware -

intel pentium_n4200_firmware -

intel pentium_n3710_firmware -

intel pentium_n4200e_firmware -

intel pentium_n3700_firmware -

intel pentium_n3540_firmware -

intel pentium_n3530_firmware -

intel pentium_n3520_firmware -

intel pentium_n3510_firmware -

intel pentium_silver_n6005_firmware -

intel pentium_silver_n6000_firmware -

intel pentium_silver_j5040_firmware -

intel pentium_silver_n5030_firmware -

intel pentium_silver_j5005_firmware -

intel pentium_silver_n5000_firmware -

intel atom_c3000_firmware -

Vendor Advisories

Ubuntu Security Notice: USN-5486-1: Intel Microcode vulnerabilities
Several security issues were fixed in Intel Microcode ...
Ubuntu Security Notice: USN-5535-1: Intel Microcode vulnerabilities
Several security issues were fixed in Intel Microcode ...
Amazon Linux 2: ALAS2-2022-1762
A flaw was found in microcode Under complex microarchitectural conditions, an unexpected code breakpoint may cause a system hang The hang was observed on a Skylake server processor, and subsequent analysis indicated additional potentially affected processors This flaw allows a possible temporary denial of service (TDOS) to occur (CVE-2021-0127) ...
Red Hat: CVE-2021-0146
Hardware allows activation of test and debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access ...
Brocade Security Advisories: Access Denied
Menu Log in ...

Recent Articles

Intel's recent Atom, Celeron, Pentium chips can be lulled into a debug mode, potentially revealing system secrets
The Register • Thomas Claburn in San Francisco • 16 Nov 2021

Get our weekly newsletter Testing times for Chipzilla as it emits patches to protect PCs, equipment

Certain Intel processors can be slipped into a test mode, granting access to low-level keys that can be used to, say, unlock encrypted data stored in a stolen laptop or some other device. This vulnerability (CVE-2021-0146), identified by Positive Technologies, a security firm just sanctioned by the US, affects various Intel Atom, Celeron, and Pentium chips that were made in the past few years. It's one of 25 security holes Intel revealed last week. The insecure chip hardware permits the "activat...

Read more...

References

NVD-CWE-Otherhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00528.htmlhttps://security.netapp.com/advisory/ntap-20211210-0006/https://nvd.nist.govhttps://ubuntu.com/security/notices/USN-5486-1https://ubuntu.com/security/notices/USN-5535-1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook