CVE-2021-0146

Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Published: 2021-11-17 Last update: 2024-11-21 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2021-0146 is rated Low Risk (38.6/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.41%). Monitor for updates and reassess as exploit intelligence or EPSS changes.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2021-0146

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.25% 0.41% +0.16%
2 2026-01-14 0.27% 0.25% -0.02%
3 2025-10-12 0.27%

Full EPSS history (19 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2021-0146

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.8 3.1 MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Click to expand
Attack vector (AV:P)
Hands-on access—USB, keyboard, opening the case—not something you do purely over the wire.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N)
No account or special rights needed—anonymous or random user is enough.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:H)
They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H)
Could take the service down hard or make it unusable for people who depend on it.
 0.9 5.9 [email protected]
4.6 2.0 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 3.9 6.4 [email protected]

Weakness enumeration for CVE-2021-0146

OS Trackers for CVE-2021-0146

vendor priority summary link
alpine medium CVE-2021-0146: 1 source package rows (intel-ucode); 7 state rows across 7 repos (3.17-main, 3.18-main, 3.19-main, 3.20-main, 3.21-main, 3.22-main, edge-main); fixed 7, open 0. https://security.alpinelinux.org/vuln/CVE-2021-0146
gentoo high CVE-2021-0146: 1 GLSA(s) (202402-22), 1 atom(s) (sys-firmware/intel-microcode); latest impact high. https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2021-0146
redhat high https://access.redhat.com/security/cve/CVE-2021-0146
suse high CVE-2021-0146 severity important: SUSE including 13 source package names (microcode_ctl-1.17-102.83.75.2, ucode-intel-20220207-1.1, …), 73 product×package rows across 73 product lines (HPE Helion OpenStack 8, Image SLES12-SP5-SAP-Azure-LI-BYOS-Production, … (73 product lines)): Fixed 73. https://www.suse.com/security/cve/CVE-2021-0146/
ubuntu medium CVE-2021-0146 medium priority: Ubuntu including 1 source packages (intel-microcode), 8 status rows across 8 suites (bionic, focal, impish, jammy, kinetic, trusty, upstream, xenial): released 7, ignored 1. https://ubuntu.com/security/CVE-2021-0146

Affected software / configurations for CVE-2021-0146

Vendor Product Version Raw CPE
intel pentium_j6426_firmware cpe:2.3:o:intel:pentium_j6426_firmware:-:*:*:*:*:*:*:*
intel pentium_j4205_firmware cpe:2.3:o:intel:pentium_j4205_firmware:-:*:*:*:*:*:*:*
intel pentium_j3710_firmware cpe:2.3:o:intel:pentium_j3710_firmware:-:*:*:*:*:*:*:*
intel pentium_j2900_firmware cpe:2.3:o:intel:pentium_j2900_firmware:-:*:*:*:*:*:*:*
intel pentium_j2850_firmware cpe:2.3:o:intel:pentium_j2850_firmware:-:*:*:*:*:*:*:*
intel celeron_j6412_firmware cpe:2.3:o:intel:celeron_j6412_firmware:-:*:*:*:*:*:*:*
intel celeron_j6413_firmware cpe:2.3:o:intel:celeron_j6413_firmware:-:*:*:*:*:*:*:*
intel celeron_j4125_firmware cpe:2.3:o:intel:celeron_j4125_firmware:-:*:*:*:*:*:*:*
intel celeron_j4025_firmware cpe:2.3:o:intel:celeron_j4025_firmware:-:*:*:*:*:*:*:*
intel celeron_j3355e_firmware cpe:2.3:o:intel:celeron_j3355e_firmware:-:*:*:*:*:*:*:*
intel celeron_j3455e_firmware cpe:2.3:o:intel:celeron_j3455e_firmware:-:*:*:*:*:*:*:*
intel celeron_j4105_firmware cpe:2.3:o:intel:celeron_j4105_firmware:-:*:*:*:*:*:*:*
intel celeron_j4005_firmware cpe:2.3:o:intel:celeron_j4005_firmware:-:*:*:*:*:*:*:*
intel celeron_j3455_firmware cpe:2.3:o:intel:celeron_j3455_firmware:-:*:*:*:*:*:*:*
intel celeron_j3355_firmware cpe:2.3:o:intel:celeron_j3355_firmware:-:*:*:*:*:*:*:*
intel celeron_j3160_firmware cpe:2.3:o:intel:celeron_j3160_firmware:-:*:*:*:*:*:*:*
intel celeron_j3060_firmware cpe:2.3:o:intel:celeron_j3060_firmware:-:*:*:*:*:*:*:*
intel celeron_j1800_firmware cpe:2.3:o:intel:celeron_j1800_firmware:-:*:*:*:*:*:*:*
intel celeron_j1900_firmware cpe:2.3:o:intel:celeron_j1900_firmware:-:*:*:*:*:*:*:*
intel celeron_j1850_firmware cpe:2.3:o:intel:celeron_j1850_firmware:-:*:*:*:*:*:*:*
intel celeron_j1750_firmware cpe:2.3:o:intel:celeron_j1750_firmware:-:*:*:*:*:*:*:*
intel celeron_n6210_firmware cpe:2.3:o:intel:celeron_n6210_firmware:-:*:*:*:*:*:*:*
intel celeron_n4505_firmware cpe:2.3:o:intel:celeron_n4505_firmware:-:*:*:*:*:*:*:*
intel celeron_n4500_firmware cpe:2.3:o:intel:celeron_n4500_firmware:-:*:*:*:*:*:*:*
intel celeron_n5105_firmware cpe:2.3:o:intel:celeron_n5105_firmware:-:*:*:*:*:*:*:*
intel celeron_n5100_firmware cpe:2.3:o:intel:celeron_n5100_firmware:-:*:*:*:*:*:*:*
intel celeron_n6211_firmware cpe:2.3:o:intel:celeron_n6211_firmware:-:*:*:*:*:*:*:*
intel celeron_n4120_firmware cpe:2.3:o:intel:celeron_n4120_firmware:-:*:*:*:*:*:*:*
intel celeron_n4020_firmware cpe:2.3:o:intel:celeron_n4020_firmware:-:*:*:*:*:*:*:*
intel celeron_n3350e_firmware cpe:2.3:o:intel:celeron_n3350e_firmware:-:*:*:*:*:*:*:*
intel celeron_n4000_firmware cpe:2.3:o:intel:celeron_n4000_firmware:-:*:*:*:*:*:*:*
intel celeron_n4100_firmware cpe:2.3:o:intel:celeron_n4100_firmware:-:*:*:*:*:*:*:*
intel celeron_n3350_firmware cpe:2.3:o:intel:celeron_n3350_firmware:-:*:*:*:*:*:*:*
intel celeron_n3450_firmware cpe:2.3:o:intel:celeron_n3450_firmware:-:*:*:*:*:*:*:*
intel celeron_n3060_firmware cpe:2.3:o:intel:celeron_n3060_firmware:-:*:*:*:*:*:*:*
intel celeron_n3160_firmware cpe:2.3:o:intel:celeron_n3160_firmware:-:*:*:*:*:*:*:*
intel celeron_n3010_firmware cpe:2.3:o:intel:celeron_n3010_firmware:-:*:*:*:*:*:*:*
intel celeron_n3000_firmware cpe:2.3:o:intel:celeron_n3000_firmware:-:*:*:*:*:*:*:*
intel celeron_n3050_firmware cpe:2.3:o:intel:celeron_n3050_firmware:-:*:*:*:*:*:*:*
intel celeron_n3150_firmware cpe:2.3:o:intel:celeron_n3150_firmware:-:*:*:*:*:*:*:*
intel celeron_n2808_firmware cpe:2.3:o:intel:celeron_n2808_firmware:-:*:*:*:*:*:*:*
intel celeron_n2840_firmware cpe:2.3:o:intel:celeron_n2840_firmware:-:*:*:*:*:*:*:*
intel celeron_n2940_firmware cpe:2.3:o:intel:celeron_n2940_firmware:-:*:*:*:*:*:*:*
intel celeron_n2807_firmware cpe:2.3:o:intel:celeron_n2807_firmware:-:*:*:*:*:*:*:*
intel celeron_n2830_firmware cpe:2.3:o:intel:celeron_n2830_firmware:-:*:*:*:*:*:*:*
intel celeron_n2930_firmware cpe:2.3:o:intel:celeron_n2930_firmware:-:*:*:*:*:*:*:*
intel celeron_n2806_firmware cpe:2.3:o:intel:celeron_n2806_firmware:-:*:*:*:*:*:*:*
intel celeron_n2920_firmware cpe:2.3:o:intel:celeron_n2920_firmware:-:*:*:*:*:*:*:*
intel celeron_n2820_firmware cpe:2.3:o:intel:celeron_n2820_firmware:-:*:*:*:*:*:*:*
intel celeron_n2815_firmware cpe:2.3:o:intel:celeron_n2815_firmware:-:*:*:*:*:*:*:*
intel celeron_n2805_firmware cpe:2.3:o:intel:celeron_n2805_firmware:-:*:*:*:*:*:*:*
intel celeron_n2810_firmware cpe:2.3:o:intel:celeron_n2810_firmware:-:*:*:*:*:*:*:*
intel celeron_n2910_firmware cpe:2.3:o:intel:celeron_n2910_firmware:-:*:*:*:*:*:*:*
intel atom_x5-e3930_firmware cpe:2.3:o:intel:atom_x5-e3930_firmware:-:*:*:*:*:*:*:*
intel atom_x5-e3940_firmware cpe:2.3:o:intel:atom_x5-e3940_firmware:-:*:*:*:*:*:*:*
intel atom_x7-e3950_firmware cpe:2.3:o:intel:atom_x7-e3950_firmware:-:*:*:*:*:*:*:*
intel pentium_n6415_firmware cpe:2.3:o:intel:pentium_n6415_firmware:-:*:*:*:*:*:*:*
intel pentium_n4200_firmware cpe:2.3:o:intel:pentium_n4200_firmware:-:*:*:*:*:*:*:*
intel pentium_n3710_firmware cpe:2.3:o:intel:pentium_n3710_firmware:-:*:*:*:*:*:*:*
intel pentium_n4200e_firmware cpe:2.3:o:intel:pentium_n4200e_firmware:-:*:*:*:*:*:*:*
intel pentium_n3700_firmware cpe:2.3:o:intel:pentium_n3700_firmware:-:*:*:*:*:*:*:*
intel pentium_n3540_firmware cpe:2.3:o:intel:pentium_n3540_firmware:-:*:*:*:*:*:*:*
intel pentium_n3530_firmware cpe:2.3:o:intel:pentium_n3530_firmware:-:*:*:*:*:*:*:*
intel pentium_n3520_firmware cpe:2.3:o:intel:pentium_n3520_firmware:-:*:*:*:*:*:*:*
intel pentium_n3510_firmware cpe:2.3:o:intel:pentium_n3510_firmware:-:*:*:*:*:*:*:*
intel pentium_silver_n6005_firmware cpe:2.3:o:intel:pentium_silver_n6005_firmware:-:*:*:*:*:*:*:*
intel pentium_silver_n6000_firmware cpe:2.3:o:intel:pentium_silver_n6000_firmware:-:*:*:*:*:*:*:*
intel pentium_silver_j5040_firmware cpe:2.3:o:intel:pentium_silver_j5040_firmware:-:*:*:*:*:*:*:*
intel pentium_silver_n5030_firmware cpe:2.3:o:intel:pentium_silver_n5030_firmware:-:*:*:*:*:*:*:*
intel pentium_silver_j5005_firmware cpe:2.3:o:intel:pentium_silver_j5005_firmware:-:*:*:*:*:*:*:*
intel pentium_silver_n5000_firmware cpe:2.3:o:intel:pentium_silver_n5000_firmware:-:*:*:*:*:*:*:*
intel atom_c3000_firmware cpe:2.3:o:intel:atom_c3000_firmware:-:*:*:*:*:*:*:*

References for CVE-2021-0146

cvelogic Threat Intelligence