CVE-2026-23363 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211() Check frame length before accessing the mgmt fields in mt7925_mac_write_txwi_80211 in order to avoid a possible oob access.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/22a6419a8b955df81082285543be3e61816c49b5
https://git.kernel.org/stable/c/2831a8c574545101e6d0df50785fccb16474eb3c
https://git.kernel.org/stable/c/3356464e50e1ee15ba3c324ef6cc5a475c2e96e4
https://git.kernel.org/stable/c/c41a9abd6ae31d130e8f332e7c8800c4c866234b

History

Wed, 25 Mar 2026 10:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211() Check frame length before accessing the mgmt fields in mt7925_mac_write_txwi_80211 in order to avoid a possible oob access.
Title		wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/22a6419a8b955df81082285543be3e61816c49b5 https://git.kernel.org/stable/c/2831a8c574545101e6d0df50785fccb16474eb3c https://git.kernel.org/stable/c/3356464e50e1ee15ba3c324ef6cc5a475c2e96e4 https://git.kernel.org/stable/c/c41a9abd6ae31d130e8f332e7c8800c4c866234b

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-03-25T10:27:46.204Z

Updated: 2026-03-25T10:27:46.204Z

Reserved: 2026-01-13T15:37:46.002Z

Link: CVE-2026-23363

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-03-25T11:16:35.407

Modified: 2026-03-25T11:16:35.407

Link: CVE-2026-23363

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23363", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-01-13T15:37:46.002Z", "datePublished": "2026-03-25T10:27:46.204Z", "dateUpdated": "2026-03-25T10:27:46.204Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-03-25T10:27:46.204Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211()\n\nCheck frame length before accessing the mgmt fields in\nmt7925_mac_write_txwi_80211 in order to avoid a possible oob access."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/wireless/mediatek/mt76/mt7925/mac.c"], "versions": [{"version": "c948b5da6bbec742b433138e3e3f9537a85af2e5", "lessThan": "3356464e50e1ee15ba3c324ef6cc5a475c2e96e4", "status": "affected", "versionType": "git"}, {"version": "c948b5da6bbec742b433138e3e3f9537a85af2e5", "lessThan": "2831a8c574545101e6d0df50785fccb16474eb3c", "status": "affected", "versionType": "git"}, {"version": "c948b5da6bbec742b433138e3e3f9537a85af2e5", "lessThan": "22a6419a8b955df81082285543be3e61816c49b5", "status": "affected", "versionType": "git"}, {"version": "c948b5da6bbec742b433138e3e3f9537a85af2e5", "lessThan": "c41a9abd6ae31d130e8f332e7c8800c4c866234b", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/wireless/mediatek/mt76/mt7925/mac.c"], "versions": [{"version": "6.7", "status": "affected"}, {"version": "0", "lessThan": "6.7", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.77", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.17", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.7", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0-rc3", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.7", "versionEndExcluding": "6.12.77"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.7", "versionEndExcluding": "6.18.17"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.7", "versionEndExcluding": "6.19.7"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.7", "versionEndExcluding": "7.0-rc3"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/3356464e50e1ee15ba3c324ef6cc5a475c2e96e4"}, {"url": "https://git.kernel.org/stable/c/2831a8c574545101e6d0df50785fccb16474eb3c"}, {"url": "https://git.kernel.org/stable/c/22a6419a8b955df81082285543be3e61816c49b5"}, {"url": "https://git.kernel.org/stable/c/c41a9abd6ae31d130e8f332e7c8800c4c866234b"}], "title": "wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211()", "x_generator": {"engine": "bippy-1.2.0"}}}}