Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Wi-Fi Authentication Bypass Vulnerability in cfg80211

Vulnerability

A vulnerability in the Linux kernel's Wi-Fi management layer (cfg80211) allows access points (APs) to incorrectly use the device's own address as their MLD address or BSSID. This issue can lead to authentication and association failures when connecting to the AP. The vulnerability has been addressed by rejecting such connections before a failed attempt occurs.

Impact

Exploitation of this vulnerability can cause authentication and association processes to fail, leading to connectivity issues with access points.

Reproduction

To reproduce this vulnerability, attempt to connect to an access point that is using the device's own address as its MLD address or BSSID. The connection should be rejected, but this process may not be intuitive without understanding the underlying issue.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Oct 4, 2025, 7:02 PM
Updated: Oct 4, 2025, 7:02 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
5.7
remediation
7.7
relevance
0.7
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.