Linux Kernel wil6210 Information Leak Vulnerability in Debugfs

Vulnerability

A vulnerability in the Linux kernel's wil6210 Wi-Fi driver has been addressed, which involved an information leak through the debug filesystem. The issue arose because the simple_write_to_buffer() function could succeed with even a single byte initialized, leading to potential data leaks. The vulnerability has been fixed by ensuring that the entire buffer is properly initialized before use, utilizing the memdup_user() function to prevent such leaks.

Impact

Exploitation of this vulnerability could lead to unintended information disclosure.

Added: Jun 18, 2025, 3:00 PM

Updated: Jun 18, 2025, 3:00 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel wil6210 Information Leak Vulnerability in Debugfs

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating