What is CVE-2021-26950?

CVE-2021-26950 is a medium-severity vulnerability in Intel Dual_band_wireless-ac_3165, classified under Out-of-bounds Read. CVSS score: 5.5/10. Published 2022-08-18.

How severe is CVE-2021-26950?

Medium severity. CVSS v3 base score is 5.5 out of 10.

Out-of-bounds Read in Intel Dual_band_wireless-ac_3165

CVE-2021-26950

Out of bounds read in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable denial of service via local access.

Vulnerability class: Buffer Overflow

EPSS: 0.002 (8.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Intel Dual_band_wireless-ac_3165
Intel Dual_band_wireless-ac_3165_firmware
Intel Dual_band_wireless-ac_3168
Intel Dual_band_wireless-ac_3168_firmware
Intel Dual_band_wireless-ac_8260
Intel Dual_band_wireless-ac_8260_firmware
Intel Dual_band_wireless-ac_8265
Intel Dual_band_wireless-ac_8265_firmware
Intel Killer_wi-fi_6_ax1650
Intel Killer_wi-fi_6_ax1650_firmware

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

secure@intel.com (Patch, x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2021-26950?: CVE-2021-26950 is a medium-severity vulnerability in Intel Dual_band_wireless-ac_3165, classified under Out-of-bounds Read. CVSS score: 5.5/10. Published 2022-08-18.
How severe is CVE-2021-26950?: Medium severity. CVSS v3 base score is 5.5 out of 10.