Debian Firmware-Nonfree vulnerabilities

37 known vulnerabilities affecting debian/firmware-nonfree.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL3HIGH7MEDIUM18LOW9

Vulnerabilities

Page 1 of 2

CVE-2025-26405LOWCVSS 5.1fixed in firmware-nonfree 20250410-1 (forky)2025

CVE-2025-26405 [MEDIUM] CVE-2025-26405: firmware-nonfree - Improper control of dynamically-managed code resources for some Intel(R) NPU Dri... Improper control of dynamically-managed code resources for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are n

debian

CVE-2025-32735LOWCVSS 6.8fixed in firmware-nonfree 20251011-1 (forky)2025

CVE-2025-32735 [MEDIUM] CVE-2025-32735: firmware-nonfree - Improper conditions check in some firmware for some Intel(R) NPU Drivers within ... Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not present with

debian

CVE-2025-26402LOWCVSS 6.8fixed in firmware-nonfree 20250410-1 (forky)2025

CVE-2025-26402 [MEDIUM] CVE-2025-26402: firmware-nonfree - Protection mechanism failure for some Intel(R) NPU Drivers within Ring 3: User A... Protection mechanism failure for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not present without special

debian

CVE-2024-23198MEDIUMCVSS 6.8fixed in firmware-nonfree 20240610-1 (forky)2024

CVE-2024-23198 [MEDIUM] CVE-2024-23198: firmware-nonfree - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software... Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40 may allow an unauthenticated user to enable denial of service via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved

debian

CVE-2024-28049MEDIUMCVSS 6.8fixed in firmware-nonfree 20240610-1 (forky)2024

CVE-2024-28049 [MEDIUM] CVE-2024-28049: firmware-nonfree - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software... Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denial of service via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie:

debian

CVE-2024-25563MEDIUMCVSS 4.6fixed in firmware-nonfree 20240610-1 (forky)2024

CVE-2024-25563 [MEDIUM] CVE-2024-25563: firmware-nonfree - Improper initialization in firmware for some Intel(R) PROSet/Wireless Software a... Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclosure via local access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (f

debian

CVE-2024-24984MEDIUMCVSS 6.8fixed in firmware-nonfree 20240610-1 (forky)2024

CVE-2024-24984 [MEDIUM] CVE-2024-24984: firmware-nonfree - Improper input validation for some Intel(R) Wireless Bluetooth(R) products for W... Improper input validation for some Intel(R) Wireless Bluetooth(R) products for Windows before version 23.40 may allow an unauthenticated user to potentially enable denial of service via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1

debian

CVE-2023-4969MEDIUMCVSS 6.5fixed in firmware-nonfree 20240610-1 (forky)2023

CVE-2023-4969 [MEDIUM] CVE-2023-4969: firmware-nonfree - A GPU kernel can read sensitive data from another GPU kernel (even from another ... A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2023-47210MEDIUMCVSS 4.7fixed in firmware-nonfree 20240610-1 (forky)2023

CVE-2023-47210 [MEDIUM] CVE-2023-47210: firmware-nonfree - Improper input validation for some Intel(R) PROSet/Wireless WiFi software for li... Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2023-38417MEDIUMCVSS 4.3fixed in firmware-nonfree 20240610-1 (forky)2023

CVE-2023-38417 [MEDIUM] CVE-2023-38417: firmware-nonfree - Improper input validation for some Intel(R) PROSet/Wireless WiFi software before... Improper input validation for some Intel(R) PROSet/Wireless WiFi software before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2023-35061LOWCVSS 2.3fixed in firmware-nonfree 20240610-1 (forky)2023

CVE-2023-35061 [LOW] CVE-2023-35061: firmware-nonfree - Improper initialization for the Intel(R) PROSet/Wireless and Intel(R) Killer(TM)... Improper initialization for the Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable information disclosure via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed i

debian

CVE-2022-40964HIGHCVSS 7.9fixed in firmware-nonfree 20240610-1 (forky)2022

CVE-2022-40964 [HIGH] CVE-2022-40964: firmware-nonfree - Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) Wi... Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2022-46329HIGHCVSS 8.2fixed in firmware-nonfree 20240610-1 (forky)2022

CVE-2022-46329 [HIGH] CVE-2022-46329: firmware-nonfree - Protection mechanism failure for some Intel(R) PROSet/Wireless WiFi software may... Protection mechanism failure for some Intel(R) PROSet/Wireless WiFi software may allow a privileged user to potentially enable escalation of privilege via local access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2022-27635HIGHCVSS 8.2fixed in firmware-nonfree 20240610-1 (forky)2022

CVE-2022-27635 [HIGH] CVE-2022-27635: firmware-nonfree - Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) Wi... Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2022-21181HIGHCVSS 7.8fixed in firmware-nonfree 20220913-1 (bookworm)2022

CVE-2022-21181 [HIGH] CVE-2022-21181: firmware-nonfree - Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) ... Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. Scope: local bookworm: resolved (fixed in 20220913-1) bullseye: open forky: resolved (fixed in 20220913-1) sid: resolved (fixed in 20220913-1) trixie: resolved (fixed in 202

debian

CVE-2022-36351MEDIUMCVSS 4.3fixed in firmware-nonfree 20240610-1 (forky)2022

CVE-2022-36351 [MEDIUM] CVE-2022-36351: firmware-nonfree - Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) W... Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an unauthenticated user to potentially enable denial of service via adjacent access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2022-38076LOWCVSS 3.8fixed in firmware-nonfree 20240610-1 (forky)2022

CVE-2022-38076 [LOW] CVE-2022-38076: firmware-nonfree - Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) W... Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an authenticated user to potentially enable escalation of privilege via local access. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 20240610-1) sid: resolved (fixed in 20240610-1) trixie: resolved (fixed in 20240610-1)

debian

CVE-2021-23223HIGHCVSS 7.8fixed in firmware-nonfree 20220913-1 (bookworm)2021

CVE-2021-23223 [HIGH] CVE-2021-23223: firmware-nonfree - Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) Wi... Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. Scope: local bookworm: resolved (fixed in 20220913-1) bullseye: open forky: resolved (fixed in 20220913-1) sid: resolved (fixed in 20220913-1) trixie: resolved (fixed in 20220

debian

CVE-2021-37409HIGHCVSS 7.8fixed in firmware-nonfree 20220913-1 (bookworm)2021

CVE-2021-37409 [HIGH] CVE-2021-37409: firmware-nonfree - Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) Wi... Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. Scope: local bookworm: resolved (fixed in 20220913-1) bullseye: open forky: resolved (fixed in 20220913-1) sid: resolved (fixed in 20220913-1) trixie: resolved (fixed in 20220

debian

CVE-2021-44545MEDIUMCVSS 6.5fixed in firmware-nonfree 20220913-1 (bookworm)2021

CVE-2021-44545 [MEDIUM] CVE-2021-44545: firmware-nonfree - Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) ... Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access. Scope: local bookworm: resolved (fixed in 20220913-1) bullseye: open forky: resolved (fixed in 20220913-1) sid: resolved (fixed in 20220913-1) trixie: resolved (fixed i

debian

1 / 2Next →