CVE-2021-0072

moderate-risk

Published 2022-02-09

Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially enable information disclosure via local access.

Do I need to act?

0.06% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (20)

Amt Ac 8260 Firmware

Amt Ac 8265 Firmware

Amt Ac 9260 Firmware

Amt Ac 9560 Firmware

Amt Wi-Fi 6 Ax200 Firmware

Amt Wi-Fi 6 Ax201 Firmware

Amt Wi-Fi 6 Ax210 Firmware

Proset Ac 3165 Firmware

Proset Ac 3168 Firmware

Proset Ac 8260 Firmware

Proset Ac 8265 Firmware

Proset Ac 9260 Firmware

Proset Ac 9461 Firmware

Proset Ac 9462 Firmware

Proset Ac 9560 Firmware

Proset Wi-Fi 6 Ax200 Firmware

Proset Wi-Fi 6 Ax201 Firmware

Proset Wi-Fi 6E Ax210 Firmware

Proset Wireless 7265 \(Rev D\) Firmware

Killer Ac 1550 Firmware

Affected Vendors

Intel

References (2)

Patch https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00539....

/ 100

moderate-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 20/34 · Moderate