CVE-2023-53226 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiex_process_mgmt_packet, mwifiex_process_sta_rx_packet and mwifiex_process_uap_rx_packet, mwifiex_uap_queue_bridged_pkt and mwifiex_process_rx_packet not out-of-bounds access the skb->data buffer.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/11958528161731c58e105b501ed60b83a91ea941
https://git.kernel.org/stable/c/29eca8b7863d1d7de6c5b746b374e3487d14f154
https://git.kernel.org/stable/c/3975e21d4d01efaf0296ded40d11c06589c49245
https://git.kernel.org/stable/c/3fe3923d092e22d87d1ed03e2729db444b8c1331
https://git.kernel.org/stable/c/650d1bc02fba7b42f476d8b6643324abac5921ed
https://git.kernel.org/stable/c/7c54b6fc39eb1aac51cf2945f8a25e2a47fdca02
https://git.kernel.org/stable/c/8824aa4ab62c800f75d96f48e1883a5f56ec5869
https://git.kernel.org/stable/c/a7300e3800e9fd5405e88ce67709c1a97783b9c8
https://git.kernel.org/stable/c/f517c97fc129995de77dd06aa5a74f909ebf568f
https://lore.kernel.org/linux-cve-announce/2025091513-CVE-2023-53226-a44a@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53226
https://www.cve.org/CVERecord?id=CVE-2023-53226

History

Wed, 17 Sep 2025 11:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Tue, 16 Sep 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025091513-CVE-2023-53226-a44a@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53226 https://www.cve.org/CVERecord?id=CVE-2023-53226
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}` threat_severity `Moderate`

Mon, 15 Sep 2025 14:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiex_process_mgmt_packet, mwifiex_process_sta_rx_packet and mwifiex_process_uap_rx_packet, mwifiex_uap_queue_bridged_pkt and mwifiex_process_rx_packet not out-of-bounds access the skb->data buffer.
Title		wifi: mwifiex: Fix OOB and integer underflow when rx packets
References		https://git.kernel.org/stable/c/11958528161731c58e105b501ed60b83a91ea941 https://git.kernel.org/stable/c/29eca8b7863d1d7de6c5b746b374e3487d14f154 https://git.kernel.org/stable/c/3975e21d4d01efaf0296ded40d11c06589c49245 https://git.kernel.org/stable/c/3fe3923d092e22d87d1ed03e2729db444b8c1331 https://git.kernel.org/stable/c/650d1bc02fba7b42f476d8b6643324abac5921ed https://git.kernel.org/stable/c/7c54b6fc39eb1aac51cf2945f8a25e2a47fdca02 https://git.kernel.org/stable/c/8824aa4ab62c800f75d96f48e1883a5f56ec5869 https://git.kernel.org/stable/c/a7300e3800e9fd5405e88ce67709c1a97783b9c8 https://git.kernel.org/stable/c/f517c97fc129995de77dd06aa5a74f909ebf568f

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-09-15T14:21:55.884Z

Updated: 2025-09-15T14:21:55.884Z

Reserved: 2025-09-15T14:19:21.846Z

Link: CVE-2023-53226

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-09-15T15:15:49.480

Modified: 2025-09-15T15:22:27.090

Link: CVE-2023-53226

Redhat

Severity : Moderate

Publid Date: 2025-09-15T00:00:00Z

Links: CVE-2023-53226 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object