CVE-2021-44545: 
Linux Debian vulnerability analysis and mitigation

CVE-2021-44545 is a security vulnerability affecting Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products. The vulnerability was disclosed in August 2022 and stems from improper input validation in the affected devices. The vulnerability impacts multiple Intel WiFi products including Killer AC 1550, Killer Wi-Fi 6 AX1650, Wi-Fi 6E AX1675, AX1690, and various Intel PROSet/Wi-Fi models (NVD).

The vulnerability is classified as an Improper Input Validation (CWE-20) issue. It received a CVSS v3.1 base score of 6.5 (Medium), with a vector string of CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The vulnerability affects multiple firmware versions, including those up to (but not including) version 3.1122.1105 for Killer series products and version 22.120 for Intel WiFi products (NVD).

The vulnerability allows an unauthenticated user to potentially enable denial of service via adjacent access. The attack requires the attacker to be in the physical proximity of the affected device but does not require any authentication or user interaction to exploit (Intel Advisory).

Intel has released firmware updates to address this vulnerability. For Killer series products, updating to firmware version 3.1122.1105 or later is recommended. For Intel WiFi products, firmware version 22.120 or later should be installed. Debian has also released security updates through firmware-nonfree package version 20190114+really20220913-0+deb10u1 (Debian Advisory).