7.8
CVE-2026-46136
- EPSS 0.13%
- Veröffentlicht 28.05.2026 09:35:52
- Zuletzt bearbeitet 24.06.2026 17:40:12
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
wifi: mt76: mt7921: fix a potential clc buffer length underflow
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buf_len is used to limit the iterations for retrieving the country power setting and may underflow under certain conditions due to changes in the power table in CLC. This underflow leads to an almost infinite loop or an invalid power setting resulting in driver initialization failure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.1.75 < 6.1.175
Linux ≫ Linux Kernel Version >= 6.6.14 < 6.6.140
Linux ≫ Linux Kernel Version >= 6.7.2 < 6.12.88
Linux ≫ Linux Kernel Version >= 6.13 < 6.18.30
Linux ≫ Linux Kernel Version >= 6.19 < 7.0.7
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.13% | 0.029 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
https://git.kernel.org/stable/c/e451c325b000b9a0081fd93bc6d103d6943d4b55
https://git.kernel.org/stable/c/90cc573fd2f46ddbc2c329e7814b5ba3deb7b939
https://git.kernel.org/stable/c/0aa63d33742b805d1a218d18d12b983cce4b2f7b
https://git.kernel.org/stable/c/a0111847f0b4f6023f6dd320114697514e024ba3
https://git.kernel.org/stable/c/5373f8b19e568b5c217832b9bbef165bd2b2df14
https://git.kernel.org/stable/c/2a79b1a492bcfa725383b6580cd93a6862308c85