-

CVE-2025-38159

EPSS 0.04%
Veröffentlicht 03.07.2025 08:36:01
Zuletzt bearbeitet 03.07.2025 15:13:53
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds

Set the size to 6 instead of 2, since 'para' array is passed to
'rtw_fw_bt_wifi_control(rtwdev, para[0], &para[1])', which reads
5 bytes:

void rtw_fw_bt_wifi_control(struct rtw_dev *rtwdev, u8 op_code, u8 *data)
{
    ...
    SET_BT_WIFI_CONTROL_DATA1(h2c_pkt, *data);
    SET_BT_WIFI_CONTROL_DATA2(h2c_pkt, *(data + 1));
    ...
    SET_BT_WIFI_CONTROL_DATA5(h2c_pkt, *(data + 4));

Detected using the static analysis tool - Svace.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 1ee8ea6937d13b20f90ff35d71ccc03ba448182d

Version 4136214f7c46839c15f0f177fe1d5052302c0205

Status affected

Version < 68a1037f0bac4de9a585aa9c879ef886109f3647

Version 4136214f7c46839c15f0f177fe1d5052302c0205

Status affected

Version < 74e18211c2c89ab66c9546baa7408288db61aa0d

Version 4136214f7c46839c15f0f177fe1d5052302c0205

Status affected

Version < c13255389499275bc5489a0b5b7940ccea3aef04

Version 4136214f7c46839c15f0f177fe1d5052302c0205

Status affected

Version < 9febcc8bded8be0d7efd8237fcef599b6d93b788

Version 4136214f7c46839c15f0f177fe1d5052302c0205

Status affected

Version < 4c2c372de2e108319236203cce6de44d70ae15cd

Version 4136214f7c46839c15f0f177fe1d5052302c0205

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.4

Status affected

Version < 5.4

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.186

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.94

Status unaffected

Version <= 6.12.*

Version 6.12.34

Status unaffected

Version <= 6.15.*

Version 6.15.3

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.097

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/1ee8ea6937d13b20f90ff35d71ccc03ba448182d

https://git.kernel.org/stable/c/68a1037f0bac4de9a585aa9c879ef886109f3647

https://git.kernel.org/stable/c/74e18211c2c89ab66c9546baa7408288db61aa0d

https://git.kernel.org/stable/c/c13255389499275bc5489a0b5b7940ccea3aef04

https://git.kernel.org/stable/c/9febcc8bded8be0d7efd8237fcef599b6d93b788

https://git.kernel.org/stable/c/4c2c372de2e108319236203cce6de44d70ae15cd

https://nvd.nist.gov/vuln/detail/CVE-2025-38159

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38159

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38159

EUVD