On Tuesday, Intel reported a memory bug impacting microprocessor firmware that is used in Intel SSD, Intel Optane SSD, and Intel SSD DataCenter products. Dell and HP quickly released patches for the bug, comprised of five vulnerabilities. These vulnerabilities range in severity from 6.0 (medium) to 7.9 (high) and are being tracked as:
CVE-2021-33080
CVE-2021-33078
CVE-2021-33077
CVE-2021-33074
CVE-2021-33069
An attacker would need access to the device with the affected hardware, but could use this bug to escalate privileges, disclose information, or execute Denial of Service. Intel released updates for their products alongside the announcement of this bug.
For the full list of affected products and recommendations, please see the full disclosure at: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00563.html
