CVE-2024-47714

MEDIUM EPSS 11.7%
Published Oct 21, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 21, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: use hweight16 to get correct tx antenna The chainmask is u16 so using hweight8 cannot get correct tx_ant. Without this patch, the tx_ant of band 2 would be -1 and lead to the following issue: BUG: KASAN: stack-out-of-bounds in mt7996_mcu_add_sta+0x12e0/0x16e0 [mt7996e]

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
11.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 3

VendorProductVersionRange
linuxlinux_kernel*≥6.2  –  <6.6.54
linuxlinux_kernel*≥6.7  –  <6.10.13
linuxlinux_kernel*≥6.11  –  <6.11.2

References 4

  • git.kernel.org https://git.kernel.org/stable/c/33954930870c18ec549e4bca0eeff43e252cb740
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/50d87e3b70980abc090676b6b4703fcbd96221f9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8f51fc8a9e2fd96363d8ec3f4ee4b78dd64754e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f98c3de92bb05dac4a4969df8a4595ed380b4604
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/33954930870c18ec549e4bca0eeff43e252cb740
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/50d87e3b70980abc090676b6b4703fcbd96221f9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8f51fc8a9e2fd96363d8ec3f4ee4b78dd64754e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f98c3de92bb05dac4a4969df8a4595ed380b4604
    Patch