CVE-2021-26257

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products versions prior to 22.120

Description The issue is related to improper buffer restrictions in the firmware of some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products. This may allow an authenticated user to potentially enable denial of service via local access. The exploitation of this issue can also lead to unauthorized access to protected information.

Recommendations For versions prior to 22.120, update to version 22.120 or later to resolve the issue. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2022-05070

CVE-2021-26257

Affected Products

Intel Wireless Bluetooth

Killer Bluetooth

CVE-2021-26257

Weakness Enumeration

Related Identifiers

Affected Products

References · 6