Intel Proset Wi-Fi 6E Ax210 Firmware vulnerabilities

CVE-2022-21160 [HIGH] CWE-119 CVE-2022-21160: Improper buffer restrictions for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenti Improper buffer restrictions for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of service via network access.

CVE-2021-23223 [HIGH] CWE-665 CVE-2021-23223: Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2022-21197 [HIGH] CWE-20 CVE-2022-21197: Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticat Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of service via network access.

CVE-2021-37409 [HIGH] CWE-863 CVE-2021-37409: Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2022-21139 [HIGH] CWE-326 CVE-2022-21139: Inadequate encryption strength for some Intel(R) PROSet/Wireless WiFi products may allow an unauthen Inadequate encryption strength for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2022-21240 [MEDIUM] CWE-125 CVE-2022-21240: Out of bounds read for some Intel(R) PROSet/Wireless WiFi products may allow a privileged user to po Out of bounds read for some Intel(R) PROSet/Wireless WiFi products may allow a privileged user to potentially enable information disclosure via local access.

CVE-2022-21140 [MEDIUM] CVE-2022-21140: Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable information disclosure via local access.

CVE-2022-21172 [MEDIUM] CWE-787 CVE-2022-21172: Out of bounds write for some Intel(R) PROSet/Wireless WiFi products may allow a privileged user to p Out of bounds write for some Intel(R) PROSet/Wireless WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2021-23168 [MEDIUM] CWE-125 CVE-2021-23168: Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-26254 [MEDIUM] CWE-125 CVE-2021-26254: Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a p Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable denial of service via local access.

CVE-2022-21212 [MEDIUM] CWE-20 CVE-2022-21212: Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticat Improper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-44545 [MEDIUM] CWE-20 CVE-2021-44545: Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may al Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-23188 [LOW] CVE-2021-23188: Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allo Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2021-0164 [HIGH] CVE-2021-0164: Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access.

CVE-2021-0162 [HIGH] CWE-20 CVE-2021-0162: Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Win Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2021-0066 [HIGH] CWE-20 CVE-2021-0066: Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating syste Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access.

CVE-2021-0163 [HIGH] CWE-20 CVE-2021-0163: Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless Wi-Fi and K Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2021-0176 [MEDIUM] CWE-20 CVE-2021-0176: Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable denial of service via local access.

CVE-2021-0175 [MEDIUM] CWE-20 CVE-2021-0175: Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel(R) P Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVE-2021-0166 [MEDIUM] CWE-200 CVE-2021-0166: Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet/Wire Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable escalation of privilege via local access.