Primary

Context

Linux Kernel Off-By-One Vulnerability in MT7925 Wi-Fi Driver

Vulnerability

Patched

An off-by-one vulnerability has been identified in the MT7925 Wi-Fi driver of the Linux kernel. This issue arises in the 'mt7925_mcu_hw_scan' function, where the 'ssid->ssids[]' and 'sreq->ssids[]' arrays are accessed. The arrays have a maximum capacity defined by 'MT7925_RNR_SCAN_MAX_BSSIDS', and the comparison needs to be adjusted to prevent out-of-bounds access. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability could lead to out-of-bounds memory access, potentially causing undefined behavior or memory corruption.

Added: Aug 19, 2025, 6:02 PM

Updated: Aug 19, 2025, 6:02 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Off-By-One Vulnerability in MT7925 Wi-Fi Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating