Improper input validation in Intel(r) Wireless Bluetooth(r) Products For Windows

CVE-2024-24984

Improper input validation for some Intel(R) Wireless Bluetooth(R) products for Windows before version 23.40 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.003 (20.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

  • N/a Intel(r) Wireless Bluetooth(r) Products For Windows — versions before version 23.40

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2024-24984?
CVE-2024-24984 is a medium-severity vulnerability in Intel(r) Wireless Bluetooth(r) Products For Windows, classified under Improper Input Validation. CVSS score: 6.5/10. Published 2024-11-13.
How severe is CVE-2024-24984?
Medium severity. CVSS v3 base score is 6.5 out of 10.