Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-42225

HistoryJul 30, 2024 - 8:15 a.m.

CVE-2024-42225

2024-07-3008:15:07

CWE-908

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

mt76 wifi

vulnerability

data

uninitialized

fix

CVSS3

7.5

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

20.3%

JSON

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: replace skb_put with skb_put_zero

Avoid potentially reusing uninitialized data

Affected configurations

Nvd

Node

linuxlinux_kernelRange<5.15.163

linuxlinux_kernelRange5.16–6.1.98

linuxlinux_kernelRange6.2–6.6.39

linuxlinux_kernelRange6.7–6.9.9

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

References

git.kernel.org/stable/c/22ea2a7f0b64d323625950414a4496520fb33657

git.kernel.org/stable/c/64f86337ccfe77fe3be5a9356b0dabde23fbb074

git.kernel.org/stable/c/7f819a2f4fbc510e088b49c79addcf1734503578

git.kernel.org/stable/c/dc7f14d00d0c4c21898f3504607f4a31079065a2

git.kernel.org/stable/c/ff6b26be13032c5fbd6b6a0b24358f8eaac4f3af

CVSS3

7.5

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

20.3%

JSON

Related for NVD:CVE-2024-42225