CVE-2024-36921

medium

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: guard against invalid STA ID on removal Guard against invalid station IDs in iwl_mvm_mld_rm_sta_id as that would result in out-of-bounds array accesses. This prevents issues should the driver get into a bad state during error handling.

References

https://git.kernel.org/stable/c/fab21d220017daa5fd8a3d788ff25ccfecfaae2f

https://git.kernel.org/stable/c/94f80a8ec15e238b78521f20f8afaed60521a294

https://git.kernel.org/stable/c/17f64517bf5c26af56b6c3566273aad6646c3c4f

Details

Source: Mitre, NVD

Published: 2024-05-30

Updated: 2024-05-30

Risk Information

CVSS v2

Base Score: 8.3

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 6.7

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Severity: Medium