CVE-2025-39919

MEDIUM 5.5

wifi: mt76: mt7996: add missing check for rx wcid entries

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

6th

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: add missing check for rx wcid entries Non-station wcid entries must not be passed to the rx functions. In case of the global wcid entry, it could even lead to corruption in the wcid array due to pointer being casted to struct mt7996_sta_link using container_of.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Oct 1, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

7464b12b7d92b9641d4664735b9f3c3f0b6173d9 < 69dcc19048fcdc3fb166fd25b805470ee8fc0eb1 7464b12b7d92b9641d4664735b9f3c3f0b6173d9 < 4a522b01e368eec58d182ecc47d24f49a39e440d

Linux / Linux

6.15

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/69dcc19048fcdc3fb166fd25b805470ee8fc0eb1 git.kernel.org: https://git.kernel.org/stable/c/4a522b01e368eec58d182ecc47d24f49a39e440d