#VU64522 Security features bypass in Intel products - CVE-2021-0146
Published: June 20, 2022
Vulnerability identifier: #VU64522
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2021-0146
CWE-ID: CWE-254
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Intel Pentium Processor J Series
Intel Pentium Processor N Series
Intel Atom Processor E3900 Series
Intel Celeron Processor J Series
Intel Celeron Processor N Series
Intel Atom Processor A Series
Intel Pentium Processor Silver Series
Intel Atom processor C3000 series
Intel Pentium Processor J Series
Intel Pentium Processor N Series
Intel Atom Processor E3900 Series
Intel Celeron Processor J Series
Intel Celeron Processor N Series
Intel Atom Processor A Series
Intel Pentium Processor Silver Series
Intel Atom processor C3000 series
Software vendor:
Intel
Intel
Description
The vulnerability allows a local attacker to escalate privileges on the system.
The vulnerability exists due to hardware allows activation of test or debug logic at runtime. An attacker with physical access to device can execute arbitrary code with elevated privileges.
Remediation
Install updates from vendor's website.