CVE-2022-26047
published 2022-11-11CVE-2022-26047: Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi products may allow unauthenticated user to…
medium6.5CVSS 3.1
AVAACLPRNUINSUCNINAH
Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi products may allow unauthenticated user to potentially enable denial of service via local access.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| intel | converged_security_and_manageability_engine | < 16.1.25.1885v2 | 16.1.25.1885v2 |
| intel | converged_security_and_manageability_engine | < 16.1.25.1865v6.1 | 16.1.25.1865v6.1 |
| intel | converged_security_and_manageability_engine | < 15.0.42.2235 | 15.0.42.2235 |
| intel | converged_security_and_manageability_engine | < 14.1.67.2046 | 14.1.67.2046 |
| intel | converged_security_and_manageability_engine | < 12.0.92.2145v3 | 12.0.92.2145v3 |
| intel | killer_wifi_software | < 3.1122.3158 | 3.1122.3158 |
| intel | proset_wireless_wifi | < 22.140 | 22.140 |
| intel | uefi_wifi_driver | < 2.2.14.22176 | 2.2.14.22176 |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv6.5MEDIUM