Name | CVE-2021-0170 |
Description | Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow an authenticated user to potentially enable information disclosure via local access. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Intel firmware, there is no conclusive information if the blobs shipped in
firmware-nonfree are affected. If they are, they would get fixed via release updates
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00539.html