Intel Killer Wi-Fi 6E Ax1675 Firmware vulnerabilities

CVE-2021-23223 [HIGH] CWE-665 CVE-2021-23223: Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2021-37409 [HIGH] CWE-863 CVE-2021-37409: Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2021-33847 [HIGH] CWE-119 CVE-2021-33847: Improper buffer restrictions in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Blue Improper buffer restrictions in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2021-23179 [HIGH] CWE-125 CVE-2021-23179: Out of bounds read in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) p Out of bounds read in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow a privileged user to potentially enable information disclosure via local access.

CVE-2021-26257 [MEDIUM] CWE-119 CVE-2021-26257: Improper buffer restrictions in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Blue Improper buffer restrictions in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2022-21140 [MEDIUM] CVE-2022-21140: Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable information disclosure via local access.

CVE-2021-23168 [MEDIUM] CWE-125 CVE-2021-23168: Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-26254 [MEDIUM] CWE-125 CVE-2021-26254: Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a p Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable denial of service via local access.

CVE-2021-26950 [MEDIUM] CWE-125 CVE-2021-26950: Out of bounds read in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) p Out of bounds read in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2021-44545 [MEDIUM] CWE-20 CVE-2021-44545: Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may al Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-23188 [LOW] CVE-2021-23188: Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2021-0164 [HIGH] CVE-2021-0164: Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access.

CVE-2021-0162 [HIGH] CWE-20 CVE-2021-0162: Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Win Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2021-0066 [HIGH] CWE-20 CVE-2021-0066: Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating syste Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access.

CVE-2021-0163 [HIGH] CWE-20 CVE-2021-0163: Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless Wi-Fi and K Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2021-0176 [MEDIUM] CWE-20 CVE-2021-0176: Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable denial of service via local access.

CVE-2021-0175 [MEDIUM] CWE-20 CVE-2021-0175: Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel(R) P Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-0166 [MEDIUM] CWE-200 CVE-2021-0166: Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet/Wire Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2021-0072 [MEDIUM] CWE-20 CVE-2021-0072: Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable information disclosure via local access.

CVE-2021-0179 [MEDIUM] CWE-20 CVE-2021-0179: Improper Use of Validation Framework in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) W Improper Use of Validation Framework in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access.