CVE-2022-40964
First published: Fri Aug 11 2023(Updated: )
Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/linux-firmware | <20230804 | 20230804 |
| Intel Killer Wi-Fi | <34.22.1163 | |
| Intel Proset/Wireless WiFi | <22.200 | |
| Intel UEFI Firmware | <3.2.20.23023 | |
| Intel Killer Wi-Fi 6 AX1650i/S | ||
| Intel Killer Wi-Fi 6E AX1675i/S | ||
| Intel Killer Wi-Fi 6E AX1675X/W | ||
| Intel Killer Wi-Fi 6E AX1690i/s | ||
| Intel Killer Wireless-AC 1550i/s | ||
| Intel Wi-Fi 6E AX201 Firmware | ||
| Intel Wi-Fi 6E AX210 firmware | ||
| Intel ax211 | ||
| Intel Wi-Fi 6E AX411 Firmware | ||
| Intel Wireless-AC 9461 | ||
| Intel Wireless-AC 9462 | ||
| Intel Wireless-AC 9560 | ||
| Fedora | =37 | |
| Fedora | =38 | |
| Fedora | =39 | |
| Debian | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html
- https://lists.debian.org/debian-lts-announce/2023/09/msg00043.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HUCYUR4WBTELCRHELISJ3RMZVHKIV5TN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K24OJT4AVMNND7LBTC2ZDDTE6DJHAKB4/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y76A3PLHIQCEPESB4XVBV5SRRXQEZ5JY/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2239143
- https://access.redhat.com/errata/RHSA-2023:6595
- https://access.redhat.com/errata/RHSA-2024:3422
- https://access.redhat.com/errata/RHSA-2024:3939
- https://access.redhat.com/errata/RHSA-2024:4575
- https://bugzilla.redhat.com/show_bug.cgi?id=2238962
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-40964.
What is the description of CVE-2022-40964?
CVE-2022-40964 is an improper access control vulnerability in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software that may allow a privileged user to potentially enable escalation of privilege via local access.
Which software is affected by CVE-2022-40964?
CVE-2022-40964 affects Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software with versions up to 34.22.1163 for Intel Killer and up to 22.200 for Intel Proset/Wireless Wifi.
What is the severity of CVE-2022-40964?
CVE-2022-40964 has a severity rating of 6.7 (high).
How can I fix CVE-2022-40964?
To fix CVE-2022-40964, it is recommended to update the affected Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software to versions that are not vulnerable.
- agent/type
- agent/remedy
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-40964
- agent/software-canonical-lookup
- agent/references
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/author
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- package-manager/redhat
- vendor/intel
- canonical/intel killer wi-fi
- canonical/intel proset/wireless wifi
- canonical/intel uefi firmware
- canonical/intel killer wi-fi 6 ax1650i/s
- canonical/intel killer wi-fi 6e ax1675i/s
- canonical/intel killer wi-fi 6e ax1675x/w
- canonical/intel killer wi-fi 6e ax1690i/s
- canonical/intel killer wireless-ac 1550i/s
- canonical/intel wi-fi 6e ax201 firmware
- canonical/intel wi-fi 6e ax210 firmware
- canonical/intel ax211
- canonical/intel wi-fi 6e ax411 firmware
- canonical/intel wireless-ac 9461
- canonical/intel wireless-ac 9462
- canonical/intel wireless-ac 9560
- vendor/fedoraproject
- canonical/fedora
- version/fedora/37
- version/fedora/38
- version/fedora/39
- vendor/debian
- canonical/debian
- version/debian/10.0