Upstream information
CVE-2022-38076 at MITRE
Description
Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an authenticated user to potentially enable escalation of privilege via local access.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having important severity.
CVSS v3 Scores
| National Vulnerability Database |
Base Score | 3.8 |
Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N |
Attack Vector | Local |
Attack Complexity | Low |
Privileges Required | Low |
User Interaction | None |
Scope | Changed |
Confidentiality Impact | None |
Integrity Impact | Low |
Availability Impact | None |
CVSSv3 Version | 3.1 |
No SUSE Bugzilla entries cross referenced.
No SUSE Security Announcements cross referenced.
List of released packages
Product(s) | Fixed package version(s) | References |
SUSE Liberty Linux 7 | iwl100-firmware >= 39.31.5.1-83.el7_9
iwl1000-firmware >= 39.31.5.1-83.el7_9
iwl105-firmware >= 18.168.6.1-83.el7_9
iwl135-firmware >= 18.168.6.1-83.el7_9
iwl2000-firmware >= 18.168.6.1-83.el7_9
iwl2030-firmware >= 18.168.6.1-83.el7_9
iwl3160-firmware >= 25.30.13.0-83.el7_9
iwl3945-firmware >= 15.32.2.9-83.el7_9
iwl4965-firmware >= 228.61.2.24-83.el7_9
iwl5000-firmware >= 8.83.5.1_1-83.el7_9
iwl5150-firmware >= 8.24.2.2-83.el7_9
iwl6000-firmware >= 9.221.4.1-83.el7_9
iwl6000g2a-firmware >= 18.168.6.1-83.el7_9
iwl6000g2b-firmware >= 18.168.6.1-83.el7_9
iwl6050-firmware >= 41.28.5.1-83.el7_9
iwl7260-firmware >= 25.30.13.0-83.el7_9
linux-firmware >= 20200421-83.git78c0348.el7_9
| Patchnames: RHSA-2024:3939 |
SUSE Liberty Linux 9 | iwl100-firmware >= 39.31.5.1-140.el9_3
iwl1000-firmware >= 39.31.5.1-140.el9_3
iwl105-firmware >= 18.168.6.1-140.el9_3
iwl135-firmware >= 18.168.6.1-140.el9_3
iwl2000-firmware >= 18.168.6.1-140.el9_3
iwl2030-firmware >= 18.168.6.1-140.el9_3
iwl3160-firmware >= 25.30.13.0-140.el9_3
iwl5000-firmware >= 8.83.5.1_1-140.el9_3
iwl5150-firmware >= 8.24.2.2-140.el9_3
iwl6000g2a-firmware >= 18.168.6.1-140.el9_3
iwl6000g2b-firmware >= 18.168.6.1-140.el9_3
iwl6050-firmware >= 41.28.5.1-140.el9_3
iwl7260-firmware >= 25.30.13.0-140.el9_3
libertas-sd8787-firmware >= 20230814-140.el9_3
linux-firmware >= 20230814-140.el9_3
linux-firmware-whence >= 20230814-140.el9_3
netronome-firmware >= 20230814-140.el9_3
| Patchnames: RHSA-2023:6595 |
SUSE Timeline for this CVE
CVE page created: Fri Aug 11 06:02:22 2023
CVE page last modified: Mon Jun 17 15:38:54 2024