What is CVE-2021-0003?

CVE-2021-0003 is a medium-severity vulnerability in Intel Ethernet_controller_e810, classified under Improper Handling of Exceptional Conditions. CVSS score: 5.5/10. Published 2021-08-11.

How severe is CVE-2021-0003?

Medium severity. CVSS v3 base score is 5.5 out of 10.

Vulnerability in Intel Ethernet_controller_e810

CVE-2021-0003

Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure via local access.

EPSS: 0.003 (23.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Intel Ethernet_controller_e810
Intel Ethernet_controller_e810_firmware
N/a Intel(r) Ethernet Controllers 800 Series Linux Drivers — versions before version 1.4.11

Weakness classification (CWE)

CWE-755 — Improper Handling of Exceptional Conditions

References

secure@intel.com (x_refsource_MISC, Vendor Advisory)
secure@intel.com (x_refsource_CONFIRM, Third Party Advisory)

Frequently asked questions

What is CVE-2021-0003?: CVE-2021-0003 is a medium-severity vulnerability in Intel Ethernet_controller_e810, classified under Improper Handling of Exceptional Conditions. CVSS score: 5.5/10. Published 2021-08-11.
How severe is CVE-2021-0003?: Medium severity. CVSS v3 base score is 5.5 out of 10.