CVE-2022-38076

Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: Aug 11, 2023
Updated: Aug 18, 2023
CVE: CVE-2022-38076
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
intel / killer	-	34.22.1163
intel / proset/wireless_wifi	-	22.200
intel / uefi_firmware	-	3.2.20.23023
fedoraproject / fedora	37	37.x
fedoraproject / fedora	38	38.x
fedoraproject / fedora	39	39.x
debian / debian_linux	10.0	10.0.x

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html
https://lists.debian.org/debian-lts-announce/2023/09/msg00043.html
https://lists.fedoraproject.org/archives/list/[email protected]/message/HUCYUR4WBTELCRHELISJ3RMZVHKIV5TN/
https://lists.fedoraproject.org/archives/list/[email protected]/message/K24OJT4AVMNND7LBTC2ZDDTE6DJHAKB4/
https://lists.fedoraproject.org/archives/list/[email protected]/message/Y76A3PLHIQCEPESB4XVBV5SRRXQEZ5JY/

Vulnerability Database

289,697

CVE-2022-38076