CVE-2023-47210 — Improper Input Validation in Proset Wireless Wifi Software FOR Linux

CWE-20 — Improper Input Validation4 documents4 sources

Severity

4.7MEDIUMNVD

EPSS

0.0%

top 98.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Firmware-nonfree Intel Proset Wireless Wifi Software FOR Linux

Timeline

PublishedMay 16

Description

Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:LExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

▶CVEListV5intel_proset/wireless_wifi_software_for_linuxbefore version 23.20

▶debiandebian/firmware-nonfree< firmware-nonfree 20240610-1 (forky)

🔴Vulnerability Details

OSV

CVE-2023-47210: Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before version 23↗2024-05-16

▶

GHSA

GHSA-h6v6-79g8-qw55: Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before version 23↗2024-05-16

▶

📋Vendor Advisories

Debian

CVE-2023-47210: firmware-nonfree - Improper input validation for some Intel(R) PROSet/Wireless WiFi software for li...↗2023

▶