Vulnerability Description
Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Killer Wi-Fi 6E Ax1690 Firmware | < 3.1122.1105 |
| Intel | Killer Wi-Fi 6E Ax1690 | - |
| Intel | Killer Wi-Fi 6E Ax1675 Firmware | < 3.1122.1105 |
| Intel | Killer Wi-Fi 6E Ax1675 | - |
| Intel | Proset Wi-Fi 6E Ax210 Firmware | < 22.120 |
| Intel | Proset Wi-Fi 6E Ax210 | - |
| Intel | Wi-Fi 6E Ax211 Firmware | < 22.120 |
| Intel | Wi-Fi 6E Ax211 | - |
| Intel | Wi-Fi 6E Ax411 Firmware | < 22.120 |
| Intel | Wi-Fi 6E Ax411 | - |
Related Weaknesses (CWE)
References
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.PatchVendor Advisory
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.PatchVendor Advisory
FAQ
What is CVE-2021-23223?
CVE-2021-23223 is a vulnerability with a CVSS score of 7.8 (HIGH). Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.
How severe is CVE-2021-23223?
CVE-2021-23223 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-23223?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Killer Wi-Fi 6E Ax1690 Firmware, Intel Killer Wi-Fi 6E Ax1690, Intel Killer Wi-Fi 6E Ax1675 Firmware, Intel Killer Wi-Fi 6E Ax1675, Intel Proset Wi-Fi 6E Ax210 Firmware.