CVE-2022-38076

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-38076
Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html Patch Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:intel:killer:*:*:*:*:*:*:*:*
cpe:2.3:a:intel:proset\/wireless_wifi:*:*:*:*:*:*:*:*
cpe:2.3:a:intel:uefi_firmware:*:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:dual_band_wireless-ac_3165:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_3168:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_8260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_8265:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:killer_wireless-ac_1550:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9461:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9462:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9560:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless_7265_\(rev_d\):-:*:*:*:*:*:*:*
Information

Published : 2023-08-11 03:15

Updated : 2023-08-17 17:06

NVD link : CVE-2022-38076

Mitre link : CVE-2022-38076

JSON object : View

Products Affected

intel

  • dual_band_wireless-ac_3168
  • dual_band_wireless-ac_8265
  • killer
  • wireless-ac_9260
  • wireless_7265_\(rev_d\)
  • wireless-ac_9461
  • dual_band_wireless-ac_8260
  • wireless-ac_9462
  • proset\/wireless_wifi
  • killer_wireless-ac_1550
  • dual_band_wireless-ac_3165
  • wireless-ac_9560
  • uefi_firmware
CWE
NVD-CWE-noinfo