Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00540
HistoryNov 09, 2021 - 12:00 a.m.

Intel® Wireless Bluetooth® and Killer™ Bluetooth® Advisory

2021-11-0900:00:00
Intel Security Center
www.intel.com
6
security vulnerabilities
intel® wireless bluetooth®
killer™ bluetooth®
installer
privilege escalation
denial of service
updates
windows 10

EPSS

0

Percentile

12.6%

JSON

Summary:

Potential security vulnerabilities in the installer for some Intel® Wireless Bluetooth® and Killer™ Bluetooth® products may allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities.

Vulnerability Details:

CVEID: CVE-2021-0151

Description: Improper access control in the installer for some Intel® Wireless Bluetooth® and Killer™ Bluetooth® products in Windows 10 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Base Score: 6.7 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

CVEID: CVE-2021-0152

Description: Improper verification of cryptographic signature in the installer for some Intel® Wireless Bluetooth® and Killer™ Bluetooth® products in Windows 10 may allow an authenticated user to potentially enable denial of service via local access.

CVSS Base Score: 4.6 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L

Affected Products:

Intel® Wireless Bluetooth® products:

  • Intel® Wi-Fi 6 AX210
  • Intel® Wi-Fi 6 AX201
  • Intel® Wi-Fi 6 AX200
  • Intel® Wireless-AC 9560
  • Intel® Wireless-AC 9462
  • Intel® Wireless-AC 9461
  • Intel® Wireless-AC 9260
  • Intel® Dual Band Wireless-AC 8265
  • Intel® Dual Band Wireless-AC 8260
  • Intel® Dual Band Wireless-AC 3168
  • Intel® Wireless 7265 (Rev D) Family
  • Intel® Dual Band Wireless-AC 3165

Killer™ Bluetooth® products:

  • Killer™ Wi-Fi 6E AX1675
  • Killer™ Wi-Fi 6 AX1650
  • Killer™ Wireless-AC 1550

Recommendations:

Windows OS:

Intel recommends updating the affected Intel® Wireless Bluetooth® and Killer™ Bluetooth® products to version 22.60 or later.

Windows 10 updates are available for download at this location:

<https://www.intel.com/content/www/us/en/support/articles/000005489/wireless/intel-wireless-products.html&gt;

Updates for Killer™ drivers with Windows 10 are available for download at this location: <https://www.intel.com/content/www/us/en/secure/design/confidential/products-and-solutions/wireless-and-modems/wireless-software/killer-performance-suite.html&gt;

Acknowledgements:

These issues were found internally by Intel.****

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

nvd 2
prion 2
cve 2
cnvd 1
cvelist 2
nvd
nvd
CVE-2021-0152
2021-11-17 20:15:09
CVE-2021-0151
2021-11-17 20:15:09
prion
prion
Input validation
2021-11-17 20:15:00
Improper access control
2021-11-17 20:15:00
cve
cve
CVE-2021-0152
2021-11-17 20:15:09
CVE-2021-0151
2021-11-17 20:15:09
cnvd
cnvd
Intel Wireless Bluetooth Denial of Service Vulnerability
2021-11-13 00:00:00
cvelist
cvelist
CVE-2021-0152
2021-11-17 19:21:01
CVE-2021-0151
2021-11-17 19:20:06

EPSS

0

Percentile

12.6%

JSON
Related for INTEL:INTEL-SA-00540
nvd2prion2cve2cnvd1cvelist2