NULL Pointer Dereference in Intel PROSet/Wireless WiFi and Killer WiFi Software
CVE-2024-39356

7.1HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Proset/wireless Wifi And Killer(tm) Wifi Software For Windows
Vendor: CVE Published:; 12 February 2025

What is CVE-2024-39356?

A NULL pointer dereference vulnerability exists in the Intel PROSet/Wireless WiFi and Killer WiFi software for Windows, which can be exploited by unauthenticated users within adjacent access. This issue allows attackers to potentially cause a denial of service condition, affecting the availability of the software. Users are advised to update to version 23.80 or later to mitigate this risk.

Affected Version(s)

Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software for Windows before version 23.80

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Jul 17, 2024