Improper Input Validation in Intel PROSet/Wireless Software and Killer Wi-Fi Products
CVE-2024-23198

6.8MEDIUM

Key Information:

Vendor: Intel Corporation
Status: Intel(r) Proset/wireless Software And Intel(r) Killer(tm) Wi-fi Products
Vendor: CVE Published:; 13 November 2024

🔔 Create Intel Corporation Vulnerability Alert

What is CVE-2024-23198?

The vulnerability is characterized by improper input validation in the firmware of Intel's wireless software and Killer products. This flaw potentially allows unauthorized users to exploit adjacent access to trigger denial of service conditions, impacting the effectiveness and reliability of the affected networking products. Users of older versions of Intel PROSet/Wireless Software and Killer Wi-Fi products should verify their firmware versions to mitigate the associated risks.

Affected Version(s)

Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 13, 2024