Information Exposure in Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi Firmware
CVE-2021-0166
6.7MEDIUM
Key Information:
- Vendor
- Intel
- Vendor
- CVE Published:
- 9 February 2022
Summary
The firmware for certain Intel PROSet/Wireless Wi-Fi and Killer Wi-Fi devices may inadvertently expose sensitive information. This exposure occurs when a privileged user utilizes local access to manipulate settings, potentially leading to opportunities for privilege escalation. The vulnerability highlights concerns regarding unauthorized data access that could compromise user privacy and system security across multiple operating systems, including Windows 10 and 11.
Affected Version(s)
Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 See references
References
CVSS V3.1
Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved