CVE-2021-33061

Public on 2022-02-09

Modified on 2025-01-18

Description

Insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access.

Severity

Medium

See what this means

CVSS v3 Base Score

5.5

Affected Packages

Platform	Package	Release Date	Advisory
Amazon Linux 2 - Kernel-5.10 Extra	kernel	2025-03-06	ALAS2KERNEL-5.10-2025-085
Amazon Linux 2 - Kernel-5.4 Extra	kernel	2025-03-06	ALAS2KERNEL-5.4-2025-096

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv3	5.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
NVD	CVSSv3	5.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
NVD	CVSSv2	2.1	AV:L/AC:L/Au:N/C:N/I:N/A:P

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2021-33061 Mitre: CVE-2021-33061