Intel AC 9560

Improper input validation in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.100 may allow an authenticated user to potentially enable denial of service via adjacent access.

Published: 2022-02-09T22:04:47.000Z
Updated: 2025-05-05T16:47:12.297Z

Improper conditions check in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.100 may allow an authenticated user to potentially enable denial of service via adjacent access.

Published: 2022-02-09T22:04:44.000Z
Updated: 2025-05-05T16:47:49.805Z

Improper input validation for some Intel(R) PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Published: 2022-02-09T22:04:37.000Z
Updated: 2025-05-05T16:49:54.414Z

Improper verification of cryptographic signature in the installer for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products in Windows 10 may allow an authenticated user to potentially enable denial of service via local access.

Published: 2021-11-17T19:21:01.000Z
Updated: 2024-08-03T15:32:09.583Z

Improper access control in the installer for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products in Windows 10 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2021-11-17T19:20:06.000Z
Updated: 2024-08-03T15:32:09.511Z

Insecure inherited permissions in some Intel(R) ProSet/Wireless WiFi drivers may allow an authenticated user to potentially enable information disclosure and denial of service via adjacent access.

Published: 2021-06-09T19:00:03.000Z
Updated: 2024-08-03T15:32:09.121Z

Uncontrolled search path in software installer for Intel(R) PROSet/Wireless WiFi in Windows 10 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2021-11-17T19:30:03.000Z
Updated: 2024-08-03T15:25:01.872Z

Improper input validation in software for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in Windows 10 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access.

Published: 2021-11-17T19:28:16.000Z
Updated: 2024-08-03T15:25:01.972Z

Out-of-bounds write in firmware for some Intel(R) PROSet/Wireless WiFi in multiple operating systems and some Killer(TM) WiFi in Windows 10 may allow a privileged user to potentially enable denial of service via local access.

Published: 2021-11-17T19:38:18.000Z
Updated: 2024-08-03T15:25:01.783Z

Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi in UEFI may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Published: 2021-11-17T19:29:08.000Z
Updated: 2024-08-03T15:25:01.806Z

Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi in multiple operating systems and some Killer(TM) WiFi in Windows 10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Published: 2021-11-17T19:37:26.000Z
Updated: 2024-08-03T15:25:01.895Z

Incorrect default permissions in the Intel(R) PROSet/Wireless WiFi software installer for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2021-11-17T19:19:10.000Z
Updated: 2024-08-03T15:25:01.768Z

Insecure inherited permissions in the Intel(R) PROSet/Wireless WiFi software installer for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2021-11-17T19:18:12.000Z
Updated: 2024-08-03T15:25:01.790Z

Improper input validation in firmware for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in Windows 10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Published: 2021-11-17T19:27:28.000Z
Updated: 2024-08-03T15:25:01.813Z

Improper initialization in firmware for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in Windows 10 may allow an authenticated user to potentially enable information disclosure via adjacent access.

Published: 2021-11-17T19:42:18.000Z
Updated: 2024-08-03T15:25:01.711Z

Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authentication procedure) by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. The attack methodology determines the Passkey value one bit at a time.

Published: 2021-05-24T17:22:16.000Z
Updated: 2025-11-04T19:12:18.753Z

Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.

Published: 2021-05-24T17:41:15.000Z
Updated: 2025-11-04T19:12:16.581Z

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.

Published: 2021-05-11T19:34:42.000Z
Updated: 2026-04-14T08:49:03.263Z

An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients and makes it easier to exploit other vulnerabilities in connected clients.

Published: 2021-05-11T19:37:55.000Z
Updated: 2026-04-14T08:49:01.511Z

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.

Published: 2021-05-11T00:00:00.000Z
Updated: 2026-04-14T08:48:59.636Z

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.

Published: 2021-05-11T00:00:00.000Z
Updated: 2024-08-04T15:19:08.605Z

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data.

Published: 2021-05-11T00:00:00.000Z
Updated: 2024-08-04T15:19:08.804Z

Incomplete cleanup in some Intel(R) PROSet/Wireless WiFi and Killer (TM) drivers before version 22.0 may allow a privileged user to potentially enable information disclosure and denial of service<b>&nbsp;</b>via adjacent access.

Published: 2021-02-17T13:45:47.000Z
Updated: 2024-08-04T15:12:08.979Z

Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access.

Published: 2020-11-23T00:00:00.000Z
Updated: 2024-08-04T06:02:52.444Z

Improper input validation for some Intel(R) Wireless Bluetooth(R) products may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2020-08-13T03:29:13.000Z
Updated: 2024-08-04T06:02:52.337Z

Insufficient control flow management for some Intel(R) Wireless Bluetooth(R) products may allow an unprivileged user to potentially enable denial of service via adjacent access.

Published: 2020-08-13T03:29:54.000Z
Updated: 2024-08-05T00:19:41.418Z