Description

Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an authenticated user to potentially enable escalation of privilege via local access.

Related CPE's

a

intel

killer

Vulnerable

a

intel

proset\/wireless_wifi

Vulnerable

a

intel

uefi_firmware

Vulnerable

h

intel

dual_band_wireless-ac_3165

-

h

intel

dual_band_wireless-ac_3168

-

h

intel

dual_band_wireless-ac_8260

-

h

intel

dual_band_wireless-ac_8265

-

h

intel

killer_wireless-ac_1550

-

h

intel

wireless-ac_9260

-

h

intel

wireless-ac_9461

-

h

intel

wireless-ac_9462

-

h

intel

wireless-ac_9560

-

h

intel

wireless_7265_\(rev_d\)

-

o

fedoraproject

fedora

3

o

debian

debian_linux

10.0

Vulnerable

References

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html

PatchVendor Advisory

https://lists.debian.org/debian-lts-announce/2023/09/msg00043.html

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/HUCYUR4WBTELCRHELISJ3RMZVHKIV5TN/

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/K24OJT4AVMNND7LBTC2ZDDTE6DJHAKB4/

Mailing List

https://lists.fedoraproject.org/archives/list/[email protected]/message/Y76A3PLHIQCEPESB4XVBV5SRRXQEZ5JY/

Mailing List

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

[email protected]

Secondary
CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-08-11T03:15:13.843

11 months ago

Last modified

2023-11-07T03:50:00.173

8 months ago