Vulnerabilities

CVE-2021-0071

November 21, 2021

Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Summary:

Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Reference Links(if available):

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00509.html

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)

Tags: CVE, CVE-2021-0071, MISC, Vendor Advisory, vulnerability

CVE-2021-0071

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

Espionage – A Linux Packet Sniffing Suite For Automated MiTM Attacks

CISA: CISA Releases Eight Industrial Control Systems Advisories

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

CACTUS Ransomware Victim: https://www[.]ghimli[.]com /

Cisco Products Multiple Vulnerabilities

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

Espionage – A Linux Packet Sniffing Suite For Automated MiTM Attacks

CISA: CISA Releases Eight Industrial Control Systems Advisories

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

CACTUS Ransomware Victim: https://www[.]ghimli[.]com /

Cisco Products Multiple Vulnerabilities