Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-0060

Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions SPS_E5_04.01.04.516.0, SPS_E5_04.04.04.033.0, SPS_E5_04.04.03.281.0, SPS_E5_03.01.03.116.0, SPS_E3_05.01.04.309.0, SPS_02.04.00.101.0, SPS_SoC-A_05.00.03.114.0, SPS_SoC-X_04.00.04.326.0, SPS_SoC-X_03.00.03.117.0, IGN_E5_91.00.00.167.0, SPS_PHI_03.01.03.078.0 may allow an authenticated user to potentially enable escalation of privilege via physical access.

Security Impact Summary

This vulnerability carries a MEDIUM severity rating with a CVSS v3.1 score of 6.6, with relatively low complexity without requiring user interaction requiring only low-level privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 190 products from intel, from intel, from intel and 187 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2022, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2022-02-09T23:15:10.857

Last Modified

2025-05-05T17:16:06.087

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.6 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intel	c620a_series_firmware	< sps_e5_04.04.03.281.0	Yes
Hardware	intel	c621a	-	No
Hardware	intel	c627a	-	No
Hardware	intel	c629a	-	No
Operating System	intel	c620_series_firmware	< sps_e5_04.01.04.516.0	Yes
Hardware	intel	c621	-	No
Hardware	intel	c622	-	No
Hardware	intel	c624	-	No
Hardware	intel	c625	-	No
Hardware	intel	c626	-	No
Hardware	intel	c627	-	No
Hardware	intel	c628	-	No
Hardware	intel	c629	-	No
Operating System	intel	c240_series_firmware	< sps_e3_05.01.04.309.0	Yes
Hardware	intel	c242	-	No
Hardware	intel	c246	-	No
Hardware	intel	cm246	-	No
Operating System	intel	atom_p5000_series_firmware	< sps_soc-a_05.00.03.114.0	Yes
Hardware	intel	atom_p5921b	*	No
Hardware	intel	atom_p5931b	*	No
Hardware	intel	atom_p5942b	*	No
Hardware	intel	atom_p5962b	*	No
Operating System	intel	atom_c3000_series_firmware	< sps_soc-a_04.00.04.501.0	Yes
Hardware	intel	atom_c3308	-	No
Hardware	intel	atom_c3336	-	No
Hardware	intel	atom_c3338	-	No
Hardware	intel	atom_c3338r	-	No
Hardware	intel	atom_c3436l	-	No
Hardware	intel	atom_c3508	-	No
Hardware	intel	atom_c3538	-	No
Hardware	intel	atom_c3558	-	No
Hardware	intel	atom_c3558r	-	No
Hardware	intel	atom_c3708	-	No
Hardware	intel	atom_c3750	-	No
Hardware	intel	atom_c3758	-	No
Hardware	intel	atom_c3758r	-	No
Hardware	intel	atom_c3808	-	No
Hardware	intel	atom_c3830	-	No
Hardware	intel	atom_c3850	-	No
Hardware	intel	atom_c3858	-	No
Hardware	intel	atom_c3950	-	No
Hardware	intel	atom_c3955	-	No
Hardware	intel	atom_c3958	-	No
Operating System	intel	atom_c610_series_firmware	< sps_phi_03.01.03.078.0	Yes
Hardware	intel	atom_c612	-	No
Operating System	intel	xeon_d-1500_series_firmware	< sps_soc-x_03.00.03.117.0	Yes
Hardware	intel	xeon_d-1513n	-	No
Hardware	intel	xeon_d-1518	-	No
Hardware	intel	xeon_d-1520	-	No
Hardware	intel	xeon_d-1521	-	No
Hardware	intel	xeon_d-1523n	-	No
Hardware	intel	xeon_d-1527	-	No
Hardware	intel	xeon_d-1528	-	No
Hardware	intel	xeon_d-1529	-	No
Hardware	intel	xeon_d-1531	-	No
Hardware	intel	xeon_d-1533n	-	No
Hardware	intel	xeon_d-1537	-	No
Hardware	intel	xeon_d-1539	-	No
Hardware	intel	xeon_d-1540	-	No
Hardware	intel	xeon_d-1541	-	No
Hardware	intel	xeon_d-1543n	-	No
Hardware	intel	xeon_d-1548	-	No
Hardware	intel	xeon_d-1553n	-	No
Hardware	intel	xeon_d-1557	-	No
Hardware	intel	xeon_d-1559	-	No
Hardware	intel	xeon_d-1567	-	No
Hardware	intel	xeon_d-1571	-	No
Hardware	intel	xeon_d-1577	-	No
Operating System	intel	xeon_d_2000_series_firmware	< sps_phi_03.01.03.078.0	Yes
Hardware	intel	xeon_d-2123it	-	No
Hardware	intel	xeon_d-2141i	-	No
Hardware	intel	xeon_d-2142it	-	No
Hardware	intel	xeon_d-2143it	-	No
Hardware	intel	xeon_d-2145nt	-	No
Hardware	intel	xeon_d-2146nt	-	No
Hardware	intel	xeon_d-2161i	-	No
Hardware	intel	xeon_d-2163it	-	No
Hardware	intel	xeon_d-2166nt	-	No
Hardware	intel	xeon_d-2173it	-	No
Hardware	intel	xeon_d-2177nt	-	No
Hardware	intel	xeon_d-2183it	-	No
Hardware	intel	xeon_d-2187nt	-	No
Operating System	intel	11th_generation_core_series_firmware	< csme_15.0.35	Yes
Hardware	intel	core_i3-11100he	-	No
Hardware	intel	core_i3-1110g4	-	No
Hardware	intel	core_i3-1115g4	-	No
Hardware	intel	core_i3-1115g4e	-	No
Hardware	intel	core_i3-1115gre	-	No
Hardware	intel	core_i3-1120g4	-	No
Hardware	intel	core_i3-1125g4	-	No
Hardware	intel	core_i5-11260h	-	No
Hardware	intel	core_i5-11300h	-	No
Hardware	intel	core_i5-1130g7	-	No
Hardware	intel	core_i5-11320h	-	No
Hardware	intel	core_i5-1135g7	-	No
Hardware	intel	core_i5-11400	-	No
Hardware	intel	core_i5-11400f	-	No
Hardware	intel	core_i5-11400h	-	No
Hardware	intel	core_i5-11400t	-	No
Hardware	intel	core_i5-1140g7	-	No
Hardware	intel	core_i5-1145g7	-	No
Hardware	intel	core_i5-1145g7e	-	No
Hardware	intel	core_i5-1145gre	-	No
Hardware	intel	core_i5-11500	-	No
Hardware	intel	core_i5-11500h	-	No
Hardware	intel	core_i5-11500he	-	No
Hardware	intel	core_i5-11500t	-	No
Hardware	intel	core_i5-1155g7	-	No
Hardware	intel	core_i5-11600	-	No
Hardware	intel	core_i5-11600k	-	No
Hardware	intel	core_i5-11600kf	-	No
Hardware	intel	core_i5-11600t	-	No
Hardware	intel	core_i7-11370h	-	No
Hardware	intel	core_i7-11375h	-	No
Hardware	intel	core_i7-11390h	-	No
Hardware	intel	core_i7-11600h	-	No
Hardware	intel	core_i7-1160g7	-	No
Hardware	intel	core_i7-1165g7	-	No
Hardware	intel	core_i7-11700	-	No
Hardware	intel	core_i7-11700f	-	No
Hardware	intel	core_i7-11700k	-	No
Hardware	intel	core_i7-11700kf	-	No
Hardware	intel	core_i7-11700t	-	No
Hardware	intel	core_i7-11800h	-	No
Hardware	intel	core_i7-1180g7	-	No
Hardware	intel	core_i7-11850h	-	No
Hardware	intel	core_i7-11850he	-	No
Hardware	intel	core_i7-1185g7	-	No
Hardware	intel	core_i7-1185g7e	-	No
Hardware	intel	core_i7-1185gre	-	No
Hardware	intel	core_i7-1195g7	-	No
Hardware	intel	core_i9-11900	-	No
Hardware	intel	core_i9-11900f	-	No
Hardware	intel	core_i9-11900h	-	No
Hardware	intel	core_i9-11900k	-	No
Hardware	intel	core_i9-11900kf	-	No
Hardware	intel	core_i9-11900t	-	No
Hardware	intel	core_i9-11950h	-	No
Hardware	intel	core_i9-11980hk	-	No
Operating System	intel	xeon_w-1300_series_firmware	< csme_15.0.35	Yes
Hardware	intel	xeon_w-1350	-	No
Hardware	intel	xeon_w-1350p	-	No
Hardware	intel	xeon_w-1370	-	No
Hardware	intel	xeon_w-1370p	-	No
Hardware	intel	xeon_w-1390	-	No
Hardware	intel	xeon_w-1390p	-	No
Hardware	intel	xeon_w-1390t	-	No
Operating System	intel	pentium_gold_series_firmware	< csme_15.0.35	Yes
Hardware	intel	pentium_gold_4410y	-	No
Hardware	intel	pentium_gold_4415u	-	No
Hardware	intel	pentium_gold_4415y	-	No
Hardware	intel	pentium_gold_4417u	-	No
Hardware	intel	pentium_gold_4425y	-	No
Hardware	intel	pentium_gold_5405u	-	No
Hardware	intel	pentium_gold_6405u	-	No
Hardware	intel	pentium_gold_6500y	-	No
Hardware	intel	pentium_gold_7505	-	No
Hardware	intel	pentium_gold_g5400	-	No
Hardware	intel	pentium_gold_g5400t	-	No
Hardware	intel	pentium_gold_g5420	-	No
Hardware	intel	pentium_gold_g5420t	-	No
Hardware	intel	pentium_gold_g5500	-	No
Hardware	intel	pentium_gold_g5500t	-	No
Hardware	intel	pentium_gold_g5600	-	No
Hardware	intel	pentium_gold_g5600t	-	No
Hardware	intel	pentium_gold_g5620	-	No
Hardware	intel	pentium_gold_g6400	-	No
Hardware	intel	pentium_gold_g6400e	-	No
Hardware	intel	pentium_gold_g6400t	-	No
Hardware	intel	pentium_gold_g6400te	-	No
Hardware	intel	pentium_gold_g6405	-	No
Hardware	intel	pentium_gold_g6405t	-	No
Hardware	intel	pentium_gold_g6500	-	No
Hardware	intel	pentium_gold_g6500t	-	No
Hardware	intel	pentium_gold_g6505	-	No
Hardware	intel	pentium_gold_g6505t	-	No
Hardware	intel	pentium_gold_g6600	-	No
Hardware	intel	pentium_gold_g6605	-	No
Hardware	intel	pentium_gold_g7400	-	No
Hardware	intel	pentium_gold_g7400e	-	No
Hardware	intel	pentium_gold_g7400t	-	No
Hardware	intel	pentium_gold_g7400te	-	No
Operating System	intel	celeron_6000_series_firmware	< csme_15.0.35	Yes
Hardware	intel	celeron_6305	-	No
Hardware	intel	celeron_6305e	-	No
Hardware	intel	celeron_6600he	-	No
Application	netapp	cloud_backup	-	Yes
Operating System	netapp	hci_compute_node_bios	-	Yes
Operating System	netapp	hci_storage_node_bios	-	Yes
Operating System	netapp	solidfire_bios	-	Yes

References

https://security.netapp.com/advisory/ntap-20220210-0005/ Third Party Advisory ([email protected])
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.html Vendor Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20220210-0005/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00470.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For intel's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.