CVE-2023-47210: 
Linux Kernel vulnerability analysis and mitigation

Improper input validation for some Intel® PROSet/Wireless WiFi software for Linux before version 23.20 was identified as CVE-2023-47210. This vulnerability affects various Intel wireless adapters including Intel® Wireless-AC 9260, Intel® Wireless-AC 9560, Intel® Killer™ Wi-Fi 6 AX1650, Intel® Wi-Fi 6 AX200, Intel® Wi-Fi 6 AX201, Intel® Wi-Fi 7 BE200, and Intel® Wi-Fi 7 BE202. The vulnerability was discovered internally by Intel employees and disclosed on May 14, 2024 (Intel Advisory).

The vulnerability is classified as an improper input validation issue (CWE-20) that affects Linux systems running Intel's PROSet/Wireless WiFi software. It has been assigned a CVSS Base Score of 4.7 (Medium) with a vector string of CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L. The scoring indicates that the vulnerability requires adjacent access, has low attack complexity, needs no privileges or user interaction, and can only impact availability (Intel Advisory).

The vulnerability can allow an unauthenticated user to potentially enable denial of service via adjacent access. The impact is limited to availability with no effect on confidentiality or integrity of the system (Intel Advisory).

Intel recommends users of affected Linux systems to update their Intel® PROSet/Wireless WiFi software to version 23.20 or later. Linux users should consult their regular open-source channels to obtain this update (Intel Advisory).