Wireless Wifi

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

intel

CWE-787

NVD

Published: 2019-11-14

Updated: 2020-08-24

Summary

Memory corruption issues in Intel(R) PROSet/Wireless WiFi Software extension DLL before version 21.40 may allow an authenticated user to potentially enable escalation of privilege, information disclosure and a denial of service via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Proset/Wireless Wifi 21.10 Intel Proset/Wireless Wifi 21.10.1 Intel Proset/Wireless Wifi 21.20.0 Intel Proset/Wireless Wifi 21.30.3	4
Hardware	Intel Intel Dual Band Wireless AC 3165 - Intel Dual Band Wireless AC 3168 - Intel Dual Band Wireless AC 7265 (Rev D) - Intel Dual Band Wireless AC 8260 - Intel Dual Band Wireless AC 8265 - Intel Dual Band Wireless N 7265 (Rev D) - Intel WI FI 6 Ax200 - Intel WI FI 6 Ax201 - Intel Wireless AC 9260 - Intel Wireless AC 9461 - Intel Wireless AC 9462 - Intel Wireless AC 9560 - Intel Wireless 7265 (Rev D) -	13

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00287.html