35 matches found
CVE-2020-24587
CVE-2020-24587 is referenced in the Amazon Linux 2 kernel advisory for Kernel-5.10-2022-002. The connected document confirms a flaw in the Linux kernel 802.11 wifi fragmentation handling where fragments encrypted under different keys can be reassembled and decrypted, enabling an attacker within w...
CVE-2020-24588
The CVE-2020-24588 entry relates to the 802.11 Wi‑Fi fragmentation/ A‑MSDU handling issue where the plaintext QoS header flag isn’t authenticated, enabling an attacker to inject packets by sending non‑SSP A‑MSDU frames (FragAttacks). Connected Astra Linux advisories describe this as a variant of ...
CVE-2020-26139
CVE-2020-26139 affects NetBSD 7.1 kernel as described in connected documents. An Access Point forwards EAPOL frames to other clients before the sender has successfully authenticated, which may enable denial-of-service attacks against connected clients in Wi‑Fi networks and could facilitate exploi...
CVE-2020-26140
The CVE-2020-26140 entry is covered in ARISTA Security Advisory 0063, which groups it under the FragAttacks fragmentation/aggregation vulnerabilities. The advisory states that plaintext data frames are accepted on encrypted networks, enabling packet injection. Fixes are provided as platform-speci...
CVE-2020-26555
Technical details beyond the initial description are not publicly provided in the connected documents. CVE-2020-26555 relates to Bluetooth BR/EDR PIN pairing impersonation as described; monitor for vendor/advisory updates for fixes and impact.
CVE-2021-0176
CVE-2021-0176 affects Intel PROSet/Wireless Wi‑Fi firmware (and related Killer/Wi‑Fi components) across multiple OSes. Root cause: improper input validation in firmware for Intel PROSet/Wireless Wi‑Fi and Killer Wi‑Fi products, enabling a privileged user to potentially execute a denial of service...
CVE-2021-0164
CVE-2021-0164 involves improper access control in firmware for Intel® PROSet/Wireless Wi-Fi and Killer™ Wi‑Fi in Windows 10/11, potentially allowing an unauthenticated local attacker to escalate privileges. Affected software/firmware includes Intel PROSet/Wireless Wi‑Fi, Intel AMT Wireless, and K...
CVE-2021-0171
CVE-2021-0171 describes improper access control in Intel® PROSet/Wireless Wi-Fi and Killer™ Wi‑Fi software on Windows 10/11, enabling an authenticated local user to potentially disclose information. Connected sources corroborate this: Red Hat entry mirrors the same description; Intel’s advisory (...
CVE-2021-0183
CVE-2021-0183 affects Intel PROSet/Wireless Wi‑Fi and Killer Wi‑Fi software on Windows 10/11, caused by improper validation of index/position/offset in input within the software. This can allow an unauthenticated user to cause a denial of service via adjacent access. Public disclosures and adviso...
CVE-2021-0161
CVE-2021-0161 involves improper input validation in firmware for Intel® PROSet/Wireless Wi-Fi and Killer™ Wi‑Fi in Windows 10/11, potentially enabling local privilege escalation for a privileged user. Affected products include Intel® PROSet/Wireless Wi‑Fi, Intel® AMT Wireless, and Killer™ Wi‑Fi o...
CVE-2021-0172
CVE-2021-0172 is supported by concrete details across connected docs: affected Intel PROSet/Wireless Wi‑Fi, Intel AMT Wireless, and Killer Wi‑Fi products; root cause is Improper input validation in firmware/software; impact is DoS via adjacent access by an unauthenticated user. Remediation is ava...
CVE-2021-0174
CVE-2021-0174 affects Intel PROSet/Wireless Wi‑Fi firmware and some Killer/Wi‑Fi products where improper use of the Validation Framework in firmware can allow an unauthenticated adjacent‑network attacker to cause a denial of service. Affected components include Intel PROSet/Wireless Wi‑Fi firmwar...
CVE-2021-0072
CVE-2021-0072 stems from improper input validation in firmware for Intel PROSet/Wireless Wi‑Fi (and related Killer/Wi‑Fi components) across Windows 10/11, allowing a privileged local user to potentially disclose sensitive information. Affected products include Intel PROSet/Wireless Wi‑Fi, Intel A...
CVE-2021-0166
CVE-2021-0166 concerns firmware for Intel PROSet/Wireless W-Fi (and related Killer Wi‑Fi software) where a local attacker could exploit exposure of sensitive information to escalate privileges. The vulnerability is described as an information-disclosure risk present in firmware for multiple Intel...
CVE-2021-0169
CVE-2021-0169 : An Uncontrolled Search Path Element in Intel® PROSet/Wireless Wi-Fi, Intel® AMT Wireless, and Killer™ Wi-Fi software for Windows 10/11 can allow a privileged user to escalate privileges via local access. Public sources in connected documents confirm this CVE with the affected Inte...
CVE-2021-0179
CVE-2021-0179 describes an improper input/validation framework issue in Intel PROSet/Wireless Wi‑Fi and Killer Wi‑Fi software for Windows 10/11. The Red Hat advisory and Intel/Security entries confirm an unauthenticated attacker may trigger a denial of service via adjacent access, with impact lim...
CVE-2021-0066
CVE-2021-0066 involves improper input validation in firmware for Intel PROSet/Wireless Wi‑Fi (and related Killer/Wi‑Fi components) that may allow a local, unauthenticated user to escalate privileges. The vulnerability affects Intel PROSet/Wireless Wi‑Fi firmware across multiple OSes and, per link...
CVE-2021-0173
CVE-2021-0173 involves improper validation of consistency within input in firmware for Intel PROSet/Wireless Wi-Fi and some Killer Wi‑Fi products, leading to potential DoS via adjacent access for unauthenticated attackers. Affected are Intel PROSet/Wireless Wi‑Fi firmware and Killer Wi‑Fi firmwar...
CVE-2021-0167
CVE-2021-0167 describes improper access control in Intel PROSet/Wireless Wi‑Fi and Killer Wi‑Fi software on Windows 10/11 that may allow a privileged local user to escalate privileges. The Red Hat and CVE ecosystems corroborate the same vulnerability, with multiple vendor advisories tracking rela...
CVE-2021-37409
CVE-2021-37409 is an Intel issue in PROSet/Wireless WiFi and Killer WiFi products involving improper access control that could let a privileged local user escalate privileges. Connected sources (Intel INTEL-SA-00621 and Debian advisories) confirm affected products include Intel PROSet/Wireless Wi...
CVE-2021-0170
CVE-2021-0170 affects firmware for Intel PROSet/Wireless Wi-Fi and some Killer Wi‑Fi products. Affected firmware exposes sensitive information to authenticated users via local access (information disclosure). Root cause: improper exposure of data in firmware. Impacts include Intel PROSet/Wireless...
CVE-2021-0162
The CVE-2021-0162 issue affects Intel PROSet/Wireless Wi-Fi, AMT Wireless, and Killer Wi‑Fi software. It is an input validation vulnerability in these components on Windows 10/11 that could allow an unauthenticated adjacent user to escalate privileges. The CVSSv3.1 base score is 8.8 (HIGH). Publi...
CVE-2021-0178
CVE-2021-0178 involves improper input validation in Intel PROSet/Wireless Wi‑Fi and Killer Wi‑Fi software for Windows 10/11, allowing an unauthenticated adjacent attacker to cause a denial of service. Affected products include Intel PROSet/Wireless Wi‑Fi, Intel AMT Wireless, and Killer Wi‑Fi driv...
CVE-2021-0076
CVE-2021-0076 affects Intel PROSet/Wireless Wi-Fi (and related Killer/Wi‑Fi components) across Windows 10/11 and firmware, caused by improper validation of an index/position/offset in input within firmware, which may allow a local privilege user to cause a denial of service. The issue is evidence...
CVE-2021-0177
CVE-2021-0177 describes an input validation/consistency issue in Intel® PROSet/Wireless Wi‑Fi and Killer™ Wi‑Fi software for Windows 10/11 that could allow an unauthenticated adjacent user to cause a denial of service. Connected sources provide concrete details: affected products include Intel® P...
CVE-2022-21181
CVE-2022-21181 affects Intel PROSet/Wireless WiFi and Killer WiFi products. Root cause: improper input validation that can allow a privileged user to escalate privileges via local access. Affected software includes Intel PROSet/Wireless WiFi and Killer WiFi drivers; Intel’s advisory recommends up...
CVE-2021-23168
CVE-2021-23168 affects Intel® PROSet/Wireless WiFi and Killer™ WiFi products. Described as an out-of-bounds read that may allow an unauthenticated user to cause denial of service via adjacent access (CVSS v3.1 base score 6.5). Intel’s advisory (INTEL-SA-00621) lists affected components and mitiga...
CVE-2021-0163
CVE-2021-0163 is an Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi input-validation vulnerability that could allow unauthenticated privilege escalation via adjacent access on Windows 10/11. Affected software includes Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi drivers; the root cause is improper v...
CVE-2021-0175
CVE-2021-0175 concerns improper validation of specified index/position/offset in input in Intel PROSet/Wireless Wi‑Fi firmware (and related Killer Wi‑Fi) across Windows 10/11 and multiple OSes, potentially enabling DoS via adjacent access by unauthenticated users. Connected documents corroborate ...
CVE-2021-44545
CVE-2021-44545 describes improper input validation in Intel PROSet/Wireless WiFi and Killer WiFi products, potentially allowing an unauthenticated attacker to cause a Denial-of-Service via adjacent access. Affected components include Intel PROSet/Wireless WiFi software prior to 22.120 and Killer ...
CVE-2021-0165
CVE-2021-0165 is an Intel/Killer Wi‑Fi firmware input-validation issue that can allow an unauthenticated user to cause DoS via adjacent access. Affected products include Intel PROSet/Wi‑Fi, Intel AMT Wireless, and Killer Wi‑Fi adapters across Windows, Linux, and UEFI contexts. Root cause: imprope...
CVE-2021-0168
CVE-2021-0168 affects Intel PROSet/Wireless Wi‑Fi firmware and Killer Wi‑Fi on Windows 10/11, caused by improper input validation in firmware/software. Local privilege escalation is possible for various Intel PROSet/Wi‑Fi products (AX210/AX201/AX200, Wireless-AC 9560/9462/9461/9260, Wireless 7265...
CVE-2022-21140
Technical details for CVE-2022-21140 are not publicly provided in the supplied documents. Monitor for updates from Intel and vendors; no confirmed affected products, root cause, or fixes are disclosed here.
CVE-2021-23188
CVE-2021-23188 is described in the linked Intel advisory (Intel-SA-00621) as an issue of improper access control in some Intel® PROSet/Wireless WiFi and Killer™ WiFi products that may allow an authenticated user to enable information disclosure via local access. The consolidated intel document se...
CVE-2021-26254
The CVE-2021-26254 issue affects Intel PROSet/Wireless WiFi and Killer WiFi software. It is described as an out-of-bounds read that may allow a privileged user to potentially enable denial of service via local access. Intel’s advisory enumerates affected components and emphasizes mitigation throu...