Intel has disclosed several high-severity vulnerabilities in its PROSet/Wireless WiFi Software for Windows, all of which could allow an unprivileged, unauthenticated attacker to cause a denial of service on affected systems. The vulnerabilities, identified as CVE-2025-35971, CVE-2025-35963, CVE-2025-30255, and CVE-2025-33029, are present in device drivers operating in Ring 2 and affect software versions prior to 23.160. Exploitation does not require user interaction or special internal knowledge, and can be performed via adjacent network access, potentially impacting system availability and, in some cases, integrity.
Intel has released security updates to address these vulnerabilities and recommends that users update to the latest version to mitigate risk. The vulnerabilities are rated as high severity with a CVSS 4.0 base score of 8.3, and their exploitation could result in significant disruption to wireless connectivity on affected devices. No remote exploitation is possible, but the low complexity of the attack increases the urgency for patching in enterprise environments relying on Intel wireless solutions.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
2 events from the most recent confirmed update back to the earliest known activity.
For CVE-2025-30255, Intel stated that affected Windows installations before version 23.160 should be updated. The flaw was described as an out-of-bounds write in Ring 2 device drivers that could allow an adjacent, unauthenticated attacker to cause denial of service.
Intel published security advisory INTEL-SA-01398 covering multiple denial-of-service vulnerabilities in Intel PROSet/Wireless WiFi Software, including CVE-2025-30255, CVE-2025-33029, CVE-2025-35963, and CVE-2025-35971.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
5 references tracked. Mallory keeps watching after this page renders.
cvefeed.io
Open sourcecvefeed.io
Open sourcecvefeed.io
Open sourcecvefeed.io
Open sourceintel.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.