CVE-2023-28374 MEDIUM

CVE-2023-28374

Vendor N/A

Product Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software

Weakness CWE-20 · Input validation

Published February 14, 2024

Last update August 15, 2024

View on NVD All CVEs

CVSS base score

6.1/10

Attack vector Adjacent

Attack complexity High

Privileges required None

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

What the vulnerability does

01Description

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Key dates

02Disclosure timeline

February 14, 2024 CVE published

August 15, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-28374

Related vulnerabilities

04Related CVE

CVE-2019-1694 Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software TCP Timer Handling Denial of Service Vulnerability CVE-2026-44658 Zen Browser: RSS Live-Folder Item URLs Are Not Scheme-Restricted Before Trusted Tab Creation CVE-2020-3240 Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data CVE-2019-1721 Cisco Expressway Series and Cisco TelePresence Video Communication Server Denial of Service Vulnerability CVE-2023-21607 Adobe Acrobat Reader Improper Input Validation Remote Code Execution Vulnerability

Identifiers

CVE CVE-2023-28374

CWE CWE-20

CVSS 6.1 / MEDIUM

Affected versions

Vendor N/A

Product Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software

Affected before version 22.240