CVE-2021-26367
MEDIUM severity · CVSS 5.7
5.7CVSS MEDIUM
Summary
A malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address range for the TMR, potentially leading to a loss of integrity and availability.
Impact & exploitability
Attack vectorLocal
Attack complexityHigh
Privileges requiredHigh
User interactionNone
Confidentiality impactNone
Integrity impactHigh
Availability impactHigh
Exploit probability (EPSS)0%
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H
Affected products we track (1)
Recommendation
Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.