High severity7.4NVD Advisory· Published Nov 11, 2025· Updated Apr 15, 2026

CVE-2025-35967

Description

Out-of-bounds read for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via adjacent access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (none) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (high) impacts.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Out-of-bounds read in Intel PROSet/Wireless WiFi drivers before 23.160 allows unauthenticated, adjacent denial of service.

Root

Cause

CVE-2025-35967 is an out-of-bounds read vulnerability found in the Ring 2 device drivers of Intel PROSet/Wireless WiFi Software for Windows before version 23.160 [1]. The flaw exists in how the driver handles certain input, leading to a read operation that accesses memory beyond an allocated buffer.

Exploitation

Conditions

Exploitation requires an unauthenticated user and an unprivileged software adversary with adjacent network access [1]. The attack complexity is low, requires no special internal knowledge, and no user interaction is needed. The attacker must be on the same network segment as the target.

Impact

A successful exploit results in a denial of service condition, impacting the availability of the vulnerable system [1]. Confidentiality and integrity are not affected. The overall impact to the system is high availability loss.

Mitigation

Intel released version 23.160 of the PROSet/Wireless WiFi Software to address this vulnerability [1]. Organizations and users should update to the latest version to mitigate the risk.

References

INTEL-SA-01398

AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Intel/PROSet/Wireless WiFi Software for Windowsllm-create
Range: <23.160

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

intel.com/content/www/us/en/security-center/advisory/intel-sa-01398.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.481
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000