CVE-2025-38343

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA IEEE 802.11 fragmentation can only be applied to unicast frames. Therefore, drop fragments with multicast or broadcast RA. This patch addresses vulnerabilities such as CVE-2020-26145.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/24900688ee47071aa6a61e78473999b5b80f0423	Patch
https://git.kernel.org/stable/c/5fd5b8132b5de08c99eea003f7715ff2e361b007	Patch
https://git.kernel.org/stable/c/80fda1cd7b0a1edd0849dc71403a070d0922118d	Patch
https://git.kernel.org/stable/c/d4b93f9c2f666011dcf810050ef60a6b8d06f186	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

History

18 Nov 2025, 12:52

Type	Values Removed	Values Added
CPE		cpe:2.3:o:linux:linux_kernel::::::::
CWE		NVD-CWE-noinfo
First Time		Linux linux Kernel Linux
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
References	~~() https://git.kernel.org/stable/c/24900688ee47071aa6a61e78473999b5b80f0423 -~~	() https://git.kernel.org/stable/c/24900688ee47071aa6a61e78473999b5b80f0423 - Patch
References	~~() https://git.kernel.org/stable/c/5fd5b8132b5de08c99eea003f7715ff2e361b007 -~~	() https://git.kernel.org/stable/c/5fd5b8132b5de08c99eea003f7715ff2e361b007 - Patch
References	~~() https://git.kernel.org/stable/c/80fda1cd7b0a1edd0849dc71403a070d0922118d -~~	() https://git.kernel.org/stable/c/80fda1cd7b0a1edd0849dc71403a070d0922118d - Patch
References	~~() https://git.kernel.org/stable/c/d4b93f9c2f666011dcf810050ef60a6b8d06f186 -~~	() https://git.kernel.org/stable/c/d4b93f9c2f666011dcf810050ef60a6b8d06f186 - Patch

Information

Published : 2025-07-10 09:15

Updated : 2025-11-18 12:52

NVD link : CVE-2025-38343

Mitre link : CVE-2025-38343

CVE.ORG link : CVE-2025-38343

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

{"id": "CVE-2025-38343", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-07-10T09:15:29.157", "references": [{"url": "https://git.kernel.org/stable/c/24900688ee47071aa6a61e78473999b5b80f0423", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/5fd5b8132b5de08c99eea003f7715ff2e361b007", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/80fda1cd7b0a1edd0849dc71403a070d0922118d", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/d4b93f9c2f666011dcf810050ef60a6b8d06f186", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: drop fragments with multicast or broadcast RA\n\nIEEE 802.11 fragmentation can only be applied to unicast frames.\nTherefore, drop fragments with multicast or broadcast RA. This patch\naddresses vulnerabilities such as CVE-2020-26145."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: wifi: mt76: mt7996: la eliminaci\u00f3n de fragmentos con RA de multidifusi\u00f3n o difusi\u00f3n. La fragmentaci\u00f3n IEEE 802.11 solo se puede aplicar a tramas de unidifusi\u00f3n. Por lo tanto, se deben eliminar fragmentos con RA de multidifusi\u00f3n o difusi\u00f3n. Este parche corrige vulnerabilidades como CVE-2020-26145."}], "lastModified": "2025-11-18T12:52:21.097", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5E01853-7048-4D78-9479-9AEE41AC8456", "versionEndExcluding": "6.6.95", "versionStartIncluding": "6.2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E569FD34-0076-4428-BE17-EECCF867611C", "versionEndExcluding": "6.12.35", "versionStartIncluding": "6.7"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFD174C5-1AA2-4671-BDDC-1A9FCC753655", "versionEndExcluding": "6.15.4", "versionStartIncluding": "6.13"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}