Intel SGX Linux Kernel Driver resource consumption

A vulnerability was found in Intel SGX (Chip Software) (affected version not known) and classified as critical. Affected by this issue is some unknown functionality of the component Linux Kernel Driver. Upgrading eliminates this vulnerability.

Field05/12/2022 08:43 PM05/14/2022 06:26 PM
vendorIntelIntel
nameSGXSGX
componentLinux Kernel DriverLinux Kernel Driver
cwe400 (denial of service)400 (denial of service)
risk11
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aHH
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
identifierintel-sa-00603intel-sa-00603
urlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00603.htmlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00603.html
nameUpgradeUpgrade
cveCVE-2021-33135CVE-2021-33135
cve_assigned16212888001621288800
date1652306400 (05/12/2022)1652306400 (05/12/2022)
typeChip SoftwareChip Software
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cvss2_vuldb_aiCC
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore6.86.8
cvss2_vuldb_tempscore5.95.9
cvss3_vuldb_basescore6.56.5
cvss3_vuldb_tempscore6.26.2
cvss3_meta_basescore6.56.5
cvss3_meta_tempscore6.26.2
price_0day$0-$5k$0-$5k
cve_nvd_summaryUncontrolled resource consumption in the Linux kernel drivers for Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

Want to stay up to date on a daily basis?

Enable the mail alert feature now!