CVE-2026-43387 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser"), we don't trust the data in the frame so we should check the length better before acting on it

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux	Linux Kernel

References

Link	Providers
https://git.kernel.org/stable/c/35969c3a208a07cb8642301df5869c34e2db7071
https://git.kernel.org/stable/c/6d62fa548387e159a21ea95132c09bfc96d336ed
https://git.kernel.org/stable/c/740bca8bbdb707c0e4bb11e3316deb2f04fc7ce1
https://git.kernel.org/stable/c/8097a48c606a9306281ea7bd73bf2afc97553733
https://git.kernel.org/stable/c/821f7d759fb2de33c5e5b0c4981181c4d0c3e9b1
https://git.kernel.org/stable/c/9a4cd4c37593cc8b8d28f9a6732b490a8032006a
https://git.kernel.org/stable/c/ac38856092b4c994f94343251b30520bdeb7f475
https://git.kernel.org/stable/c/f0109b9d3e1e455429279d602f6276e34689750a

History

Fri, 08 May 2026 17:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-125 CWE-20

Fri, 08 May 2026 14:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser"), we don't trust the data in the frame so we should check the length better before acting on it
Title		staging: rtl8723bs: properly validate the data in rtw_get_ie_ex()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/35969c3a208a07cb8642301df5869c34e2db7071 https://git.kernel.org/stable/c/6d62fa548387e159a21ea95132c09bfc96d336ed https://git.kernel.org/stable/c/740bca8bbdb707c0e4bb11e3316deb2f04fc7ce1 https://git.kernel.org/stable/c/8097a48c606a9306281ea7bd73bf2afc97553733 https://git.kernel.org/stable/c/821f7d759fb2de33c5e5b0c4981181c4d0c3e9b1 https://git.kernel.org/stable/c/9a4cd4c37593cc8b8d28f9a6732b490a8032006a https://git.kernel.org/stable/c/ac38856092b4c994f94343251b30520bdeb7f475 https://git.kernel.org/stable/c/f0109b9d3e1e455429279d602f6276e34689750a

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-08T14:21:33.323Z

Updated: 2026-05-08T14:21:33.323Z

Reserved: 2026-05-01T14:12:56.006Z

Link: CVE-2026-43387

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-05-08T15:16:50.060

Modified: 2026-05-08T15:16:50.060

Link: CVE-2026-43387

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-08T18:45:13Z

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object