CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/06 11:54 p.m.•6 views

CVE-2026-43267

A flaw was found in the rtw89 Wi-Fi driver within the Linux kernel. This vulnerability occurs when the beacon interval, a timing parameter used in Wi-Fi communication, is set to zero. This can lead to a division by zero error during subsequent calculations, potentially causing system instability ...

5.5CVSS5.8AI score0.00117EPSS

RedhatCVE•added 2026/05/06 8:16 p.m.•7 views

CVE-2026-43176

A flaw was found in the Linux kernel's rtw89 WiFi driver. This vulnerability arises from insufficient validation of release report content, specifically affecting the RTL8922DE chip. If a malformed release report is processed, it can lead to a system crash, resulting in a Denial of Service DoS...

8.8CVSS5.8AI score0.00256EPSS

EUVD•added 2026/05/06 12:30 p.m.•7 views

EUVD-2026-27775

5.8AI score0.0022EPSS

Cvelist•added 2026/05/06 11:28 a.m.•30 views

CVE-2026-43213 wifi: rtw89: pci: validate sequence number of TX release report

7.5CVSS0.0022EPSS

Debian CVE•added 2026/05/06 11:28 a.m.•8 views

CVE-2026-43213

7.5CVSS5.7AI score0.0022EPSS

ATTACKERKB•added 2026/05/06 11:27 a.m.•7 views

CVE-2026-43176

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: validate release report content before using for RTL8922DE The commit 957eda596c76 "wifi: rtw89: pci: validate sequence number of TX release report" does validation on existing chips, which somehow a release...

5.8AI score0.00256EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/06 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the possibility that beaconint may be zero in the rtw89 driver, potentially leading to a zero division...

5.5CVSS5.8AI score0.00117EPSS

Exploits0References2

CVE•added 2025/12/30 12:15 p.m.•5 views

CVE-2022-50863

CVE-2022-50863 concerns the Linux kernel wifi driver for the rtw89 stack. The issue, now resolved, is described as freeing an unused skb to prevent a memory leak under power-saving mode. The underlying root cause is the driver not freeing certain skbs, which could lead to a memory leak in affecte...

6.1AI score0.00166EPSS

Debian CVE•added 2025/12/30 12:15 p.m.•2 views

CVE-2022-50863

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: free unused skb to prevent memory leak This avoid potential memory leak under power saving mode...

5.2AI score0.00166EPSS

OSV•added 2025/10/15 7:59 a.m.•4 views

CVE-2025-40000 wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait()

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix use-after-free in rtw89coretxkickoffandwait There is a bug observed when rtw89coretxkickoffandwait tries to access already freed skbdata: BUG: KFENCE: use-after-free write in rtw89coretxkickoffandwait...

6.5AI score0.00183EPSS

Exploits0References7

Tenable Nessus•added 2025/10/08 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53452

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: rtw89: fix potential race condition between napiinit and napienable A race condition can happen if netdev is registered, but NAPI isn't initialized yet, a...

4.7CVSS5.8AI score0.00101EPSS

SUSE CVE•added 2025/10/01 11:31 p.m.•6 views

SUSE CVE-2023-53452

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential race condition between napiinit and napienable A race condition can happen if netdev is registered, but NAPI isn't initialized yet, and meanwhile user space starts the netdev that will enable NAPI. Then...

4.4CVSS6.3AI score0.00101EPSS

Exploits0References7

Microsoft CVE•added 2025/09/04 6:14 a.m.•4 views

wifi: rtw89: avoid NULL dereference when RX problematic packet on unsupported 6 GHz band

...

6.5CVSS6.8AI score0.00145EPSS

Tenable Nessus•added 2025/09/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38647

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is...

5.5CVSS5.2AI score0.00128EPSS

Exploits0References2

RedhatCVE•added 2025/08/24 4:6 p.m.•7 views

CVE-2025-38646

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: avoid NULL dereference when RX problematic packet on unsupported 6 GHz band With a quite rare chance, RX report might be problematic to make SW think a packet is received on 6 GHz band even if the chip does not suppo...

5.3CVSS6AI score0.00145EPSS

NVD•added 2025/08/22 4:15 p.m.•7 views

CVE-2025-38647

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS0.00128EPSS

Exploits0References2

OSV•added 2025/08/22 4:15 p.m.•1 views

UBUNTU-CVE-2025-38646

5.5CVSS5.7AI score0.00145EPSS

Exploits0References30

Debian CVE•added 2025/08/22 4:0 p.m.•4 views

CVE-2025-38647

5.5CVSS5.4AI score0.00128EPSS