CVE-2025-29338

MEDIUM

NXP moal.ko Wi-Fi driver 5.1.7.10 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-29338. PoCs published by masjadaan.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2025-29338, a stack-based buffer overflow in the NXP moal.ko Wi-Fi kernel driver. It includes root cause analysis, patch diffs, and a proof-of-concept for triggering a kernel panic.

Description

NXP moal.ko Wi-Fi driver 5.1.7.10 FW version from v17.92.1.p149.43 To v17.92.1.p149.157 was discovered to contain a buffer overflow via the mod_para parameter in the woal_init_module_param function.

Exploits (1)

nomisec WRITEUP

by masjadaan · poc

https://github.com/masjadaan/CVE-2025-29338

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2025-29338, a stack-based buffer overflow in the NXP moal.ko Wi-Fi kernel driver. It includes root cause analysis, patch diffs, and a proof-of-concept for triggering a kernel panic.

Classification

Writeup 100%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: NXP moal.ko Wi-Fi kernel driver version 5.1.7.10

Auth required

Prerequisites: Local access · CAP_SYS_MODULE privileges · Ability to reload kernel modules

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed May 13, 2026 Full analysis →

References (2)

Core 2

Core References

https://www.nxp.com/docs/en/release-note/RN00104.pdf

https://github.com/masjadaan/CVE-2025-29338

Scores

CVSS v3 5.6

EPSS 0.0018

EPSS Percentile 8.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-120

Status published

Published May 13, 2026

Tracked Since May 13, 2026