#VU63175 Insufficient Control Flow Management in Intel products - CVE-2021-33122

Cybersecurity Help s.r.o.

Published: 2022-05-16

Vulnerability identifier: #VU63175

Vulnerability risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-33122

CWE-ID: CWE-691

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Rocket Lake Xeon
Hardware solutions / Other hardware appliances
Intel Core Processors with Intel Hybrid Technology
Hardware solutions / Firmware
10th Generation Intel Core Processors
Hardware solutions / Firmware
Intel Pentium Silver N6000 Processors
Hardware solutions / Firmware
Intel Celeron N4000 Processors
Hardware solutions / Firmware
Intel Pentium Silver N5000 Processors
Hardware solutions / Firmware
11th Generation Intel Core Processors
Hardware solutions / Firmware
9th Generation Intel Core Processors
Client/Desktop applications / Web browsers

Vendor: Intel

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insufficient control flow management in the BIOS firmware. A local user can run a specially crafted program to execute arbitrary code with elevated privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Rocket Lake Xeon: All versions

Intel Core Processors with Intel Hybrid Technology: All versions

10th Generation Intel Core Processors: All versions

Intel Pentium Silver N6000 Processors: All versions

Intel Celeron N4000 Processors: All versions

Intel Pentium Silver N5000 Processors: All versions

9th Generation Intel Core Processors: All versions

11th Generation Intel Core Processors: All versions

External links
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00601.html

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Certain HPE SimpliVity Servers using Certain Intel Processor BIOS

Multiple vulnetabilities in Dell EMC Integrated Data Protection Appliance

Multiple vulnerabilities in Dell PowerScale OneFS

Multiple vulnerabilities in Certain HPE ProLiant DX Servers using Certain Intel Processor BIOS

Multiple vulnerabilities in Certain HPE Storage Products using Certain Intel Processor BIOS

Multiple vulnerabilities in HPE Synergy Servers using Certain Intel Processor BIOS

Multiple vulnerabilities in Dell VxFlex ReadyNode and Dell VxFlex ESXi

Multiple vulnerabilities in Dell Integrated System for Microsoft Azure Stack Hub

Multiple vulnerabilities in Certain HPE NonStop Products Using Certain Intel Processor BIOS

Multiple vulnerabilities in Dell PowerEdge BIOS