CVE-2023-33875: 
Intel PROSet/Wireless WiFi Software vulnerability analysis and mitigation

A vulnerability was identified in Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software affecting versions before 22.240. The vulnerability, tracked as CVE-2023-33875, was disclosed on February 14, 2024, and involves improper access control that could potentially lead to denial of service conditions (Intel Advisory).

The vulnerability is classified as an improper access control issue (CWE-284). It received a CVSS v3.1 base score of 7.1 (HIGH) from Intel Corporation with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H, while NIST assigned a score of 5.5 (MEDIUM) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can result in denial of service conditions when successfully exploited. The attack requires local access to the affected system, and while it doesn't impact confidentiality or integrity, it can significantly affect the availability of the system (Intel Advisory).

Intel has released software updates to address this vulnerability. Users are advised to upgrade their Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software to version 22.240 or later to mitigate the risk (Intel Advisory).