CVE-2022-26047
moderate-risk
Published 2022-11-11
Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi products may allow unauthenticated user to potentially enable denial of service via local access.
Do I need to act?
-
0.15% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.3/10
Medium
ADJACENT_NETWORK
/ LOW complexity
Affected Products (20)
Killer Wifi Software
Uefi Wifi Driver
Killer Wi-Fi 6E Ax1690 Firmware
Wi-Fi 6 Ax210 Firmware
Wi-Fi 6 Ax211 Firmware
Wi-Fi 6 Ax411 Firmware
Converged Security And Manageability Engine
Core I3-12100 Firmware
Core I3-12100F Firmware
Core I3-12100T Firmware
Core I3-1210U Firmware
Core I3-1215U Firmware
Core I3-1220P Firmware
Core I3-12300 Firmware
Core I3-12300T Firmware
Affected Vendors
References (2)
49
/ 100
moderate-risk
Severity
15/34 · Moderate
Exploitability
1/34 · Minimal
Exposure
33/34 · Critical