CVE-2026-43052

HIGH EPSS 2.0%
Published May 1, 20262mo ago · Modified Jun 19, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published May 1, 2026 2mo ago
Last Modified Jun 19, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check tdls flag in ieee80211_tdls_oper When NL80211_TDLS_ENABLE_LINK is called, the code only checks if the station exists but not whether it is actually a TDLS station. This allows the operation to proceed for non-TDLS stations, causing unintended side effects like modifying channel context and HT protection before failing. Add a check for sta->sta.tdls early in the ENABLE_LINK case, before any side effects occur, to ensure the operation is only allowed for actual TDLS peers.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥3.2  –  <6.12.81
linuxlinux_kernel*≥6.13  –  <6.18.22
linuxlinux_kernel*≥6.19  –  <6.19.12
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/44839ea7e96b3659a1606f3d5267063135479b7c
  • git.kernel.org https://git.kernel.org/stable/c/6813a8b1b240756dad4375f3e020ce10e4e3871b
  • git.kernel.org https://git.kernel.org/stable/c/7d73872d949c488a1d7c308031d6a9d89b5e0a8b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8148c2fda4ebb17104a573649c9b699208ad10ee
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ba5b43db126a5e7378553869e3f7954d9187349f
  • git.kernel.org https://git.kernel.org/stable/c/be81f17151fcb8546a95f35ca8f4231b065985de
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e602246235fc2ef06c39b2e9cf147d84d0896b73
  • git.kernel.org https://git.kernel.org/stable/c/e77b2937aaa20264e4bd699d3244bdb50e7e3343
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/7d73872d949c488a1d7c308031d6a9d89b5e0a8b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8148c2fda4ebb17104a573649c9b699208ad10ee
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/be81f17151fcb8546a95f35ca8f4231b065985de
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e77b2937aaa20264e4bd699d3244bdb50e7e3343
    Patch