CVE-2024-39271 — Improper Restriction of Communication Channel to Intended Endpoints in Proset Wireless Wifi AND Killer Wifi Software

CWE-923 — Improper Restriction of Communication Channel to Intended Endpoints3 documents3 sources

Severity

2.0LOWNVD

EPSS

0.2%

top 61.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Proset Wireless Wifi AND Killer Wifi Software

Timeline

PublishedFeb 12

Latest updateFeb 13

Description

Improper restriction of communication channel to intended endpoints in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software before version 23.80 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

CVSS vector

CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages1 packages

▶CVEListV5intel_proset/wireless_wifi_and_killer_wifi_softwarebefore version 23.80

🔴Vulnerability Details

GHSA

GHSA-6vv3-869f-rhv7: Improper restriction of communication channel to intended endpoints in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software before version 2↗2025-02-13

▶

CVEList

CVE-2024-39271: Improper restriction of communication channel to intended endpoints in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software before version 2↗2025-02-12

▶