CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.5CVSS5.7AI score0.00135EPSS

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: fix NULL pointer dereference in iwlpcieirqrxmsixhandler rxq can only be NULL when transpcie-rxq is NULL and entry-entry is zero. In cases where entry-entry is not equal to 0, rxq will not be NULL, even if...

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: avoid panic on init failure In the event of an error during initialization, inHWrestart will be set, but it will never be cleared. Instead, we will retry the initialization process again. We will act as if we...

5.5CVSS5.6AI score0.00137EPSS

7.8CVSS5.8AI score0.0015EPSS

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: wifi: iwlwifi: mvm – fixed a double-free operation in the TX path. We have observed kernel crashes, lockups, and KASAN errors related to the ax210 firmware. One of the KASAN logs indicated the TX path; it appears there is inde...

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: do not trust the firmware’s nChannels value. If the firmware sends us a corrupted MCC response where nChannels is much larger than what the command response can handle, we might copy too much uninitialized...

5.5CVSS5.8AI score0.00142EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: fix use-after-free If no firmware was present at all or, presumably, all of the firmware files failed to parse, we end up unbinding the driver by calling devicereleasedriver. This call to remove then invokes iwldrvstop,...

7.8CVSS6AI score0.00242EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: iwlwifi: Fixed memory leaks in error handling paths. If an error occurs such as an invalid TLV length or a memory allocation failure, the memory already allocated in ‘reducepowerdata’ should be freed before returning the resul...

5.5CVSS5.7AI score0.00205EPSS

5.5CVSS5.5AI score0.00141EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Use requestmodulenowait This seems to address a deadlock issue that occurred during the LED merge in version 6.9. The deadlock occurs on my system with 24 iwlwifi radios. It might be because all worker threads are...

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux-5.15, linux-6.1, linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: mvm – Fixed a memory corruption issue A few lines above, space is allocated using kzalloc for: sizeofstruct iwlnvmdata + sizeofstruct ieee80211channel + sizeofstruct ieee80211rate mvm-nvmdata is a struct iwlnvmdata...

7.8CVSS6.1AI score0.00237EPSS

7.8CVSS6.4AI score0.00307EPSS

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: wifi: iwlwifi: fixed a memory corruption iwlfwinitriggertlv::data is a pointer to a le32; this means that if we copy data to iwlfwinitriggertlv::data + offset where offset is in bytes, we will write beyond the buffer...

RedhatCVE•added 2026/05/15 11:48 a.m.•11 views

CVE-2026-43325

A flaw was found in the Linux kernel's iwlwifi driver. This vulnerability occurs when the driver attempts to send a Wi-Fi 6E 6th Generation Extended related command, specifically MCCALLOWEDAPTYPECMD, to a device that does not support Wi-Fi 6E. Due to the device's firmware mistakenly advertising...

SUSE CVE•added 2026/05/13 3:35 a.m.•8 views

Exploits0References4

SUSE CVE-2026-43325

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't send a 6E related command when not supported MCCALLOWEDAPTYPECMD is related to 6E support. Do not send it if the device doesn't support 6E. Apparently, the firmware is mistakenly advertising support for...

5.3CVSS5.8AI score0.00121EPSS

Exploits0References5

SUSE CVE•added 2026/05/09 2:41 a.m.•7 views

SUSE CVE-2026-43172

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix 22000 series SMEM parsing If the firmware were to report three LMACs which doesn't exist in hardware then using "fwrt-smemcfg.lmac2" is an overrun of the array. Reject such and use IWLFWCHECK instead of WARNON ...

8.8CVSS5.7AI score0.00256EPSS

Exploits0References3

NVD•added 2026/05/08 2:16 p.m.•12 views

CVE-2026-43325

5.5CVSS0.00121EPSS

Exploits0References3

UbuntuCve•added 2026/05/08 2:16 p.m.•7 views

CVE-2026-43325

OSV•added 2026/05/08 2:16 p.m.•8 views

Exploits0References5

UBUNTU-CVE-2026-43325

5.5CVSS5.7AI score0.00121EPSS

Exploits0References6

ATTACKERKB•added 2026/05/08 1:31 p.m.•5 views

CVE-2026-43325

5.8AI score0.00121EPSS

Exploits0References4Affected Software1

CVE•added 2026/05/08 1:31 p.m.•14 views

CVE-2026-43325

Summary: The Linux kernel iwlwifi mvm driver must not send MCC_ALLOWED_AP_TYPE_CMD to devices that don’t support 6E. The firmware erroneously advertised 6E support for AX201, causing a firmware crash and potential DoS. The entry is resolved in the provided references; no exploit details or active...

Exploits0References3Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•10 views

PT-2026-38976

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the iwlwifi wireless driver within the mvm module. The driver sends the MCC ALLOWED AP TYPE CMD command, which is related to 6E support, even when the device does not...

5.5CVSS6.3AI score0.00121EPSS

Exploits0References99

CNNVD•added 2026/05/08 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the iwlwifi mvm driver sending the MCCALLOWEDAPTYPECMD command on devices that do not support 6E,...

Tenable Nessus•added 2026/05/08 12:0 a.m.•6 views

Exploits0References1

Linux Distros Unpatched Vulnerability : CVE-2026-43325

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: iwlwifi: mvm: don't send a 6E related command when not supported MCCALLOWEDAPTYPECMD is related to 6E support. Do not send it if the device doesn't suppor...