Improper access control in Intel products - CVE-2021-0110
Published: January 5, 2022
Vulnerability identifier: #VU59220
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2021-0110
CWE-ID: CWE-284
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Intel Thunderbolt JHL6540
Intel Thunderbolt JHL6340
Intel Thunderbolt JHL6240
Intel Thunderbolt JHL7540
Intel Thunderbolt JHL7440
Intel Thunderbolt JHL7340
Intel Thunderbolt JHL8540
Intel Thunderbolt JHL8440
Intel 10th Generation Core Processors with Thunderbolt Technology
Intel 11th Generation Core Processors with Thunderbolt Technology
Intel Thunderbolt DCH drivers
Intel Thunderbolt JHL6540
Intel Thunderbolt JHL6340
Intel Thunderbolt JHL6240
Intel Thunderbolt JHL7540
Intel Thunderbolt JHL7440
Intel Thunderbolt JHL7340
Intel Thunderbolt JHL8540
Intel Thunderbolt JHL8440
Intel 10th Generation Core Processors with Thunderbolt Technology
Intel 11th Generation Core Processors with Thunderbolt Technology
Intel Thunderbolt DCH drivers
Software vendor:
Intel
Intel
Description
The vulnerability allows a local attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper access control. A local attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
Remediation
Install updates from vendor's website.