What is CVE-2021-0002?

CVE-2021-0002 is a high-severity vulnerability in Intel Ethernet_controller_e810, classified under Improper Check for Unusual or Exceptional Conditions. CVSS score: 7.1/10. Published 2021-08-11.

How severe is CVE-2021-0002?

High severity. CVSS v3 base score is 7.1 out of 10.

Is CVE-2021-0002 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Intel Ethernet_controller_e810

CVE-2021-0002

Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure or denial of service via local access.

EPSS: 0.003 (24.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H.

Affected products

Intel Ethernet_controller_e810
Intel Ethernet_controller_e810_firmware
Fedoraproject Fedora — versions 33, 34, 35
N/a Intel(r) Ethernet Controllers 800 Series Linux Drivers — versions before version 1.4.11

Weakness classification (CWE)

CWE-754 — Improper Check for Unusual or Exceptional Conditions

Public proof-of-concept exploits

n0-traces/cve_

References

secure@intel.com (x_refsource_MISC, Vendor Advisory)
secure@intel.com (x_refsource_CONFIRM, Third Party Advisory)
secure@intel.com (x_refsource_FEDORA, vendor-advisory)
secure@intel.com (x_refsource_FEDORA, vendor-advisory)
secure@intel.com (x_refsource_FEDORA, vendor-advisory)

Frequently asked questions

What is CVE-2021-0002?: CVE-2021-0002 is a high-severity vulnerability in Intel Ethernet_controller_e810, classified under Improper Check for Unusual or Exceptional Conditions. CVSS score: 7.1/10. Published 2021-08-11.
How severe is CVE-2021-0002?: High severity. CVSS v3 base score is 7.1 out of 10.
Is CVE-2021-0002 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.