CVE-2021-33110

CWE-20 — Improper Input Validation4 documents4 sources

Severity

6.5MEDIUM

EPSS

0.3%

top 46.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel AC 1550 Firmware Intel AC 3165 Firmware Intel AC 3168 Firmware +12 more

Timeline

PublishedFeb 9

Latest updateFeb 11

Description

Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 before version 22.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages16 packages

▶CVEListV5intel(r)_wireless_bluetooth(r)_products_and_killer(tm)_bluetooth(r)_products_in_windows_10_and_11before version 22.80

▶NVDintel/ax200_firmware< 22.80

▶NVDintel/ax201_firmware< 22.80

▶NVDintel/ax210_firmware< 22.80

▶NVDintel/ax1650_firmware< 22.80

🔴Vulnerability Details

GHSA

GHSA-c3fq-5967-8fmf: Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 before version 22↗2022-02-11

▶

CVEList

CVE-2021-33110: Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 before version 22↗2022-02-09

▶

OSV

CVE-2021-33110: Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 before version 22↗2022-02-09

▶