CVE-2025-38599

HIGH

Linux Kernel < 6.15.10 - Out-of-Bounds Read

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Fix possible OOB access in mt7996_tx() Fis possible Out-Of-Boundary access in mt7996_tx routine if link_id is set to IEEE80211_LINK_UNSPECIFIED

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/64cbf0d7ce9afe20666da90ec6ecaec6ba5ac64b

Patch

https://git.kernel.org/stable/c/f43e7d8ae4b6a73213032545552bab26f76f113a

Patch

https://git.kernel.org/stable/c/f82eabd0ff8067d1ee95515f4174c9a9569d54cb

Scores

CVSS v3 7.1

EPSS 0.0001

EPSS Percentile 2.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (3)

linux/Kernel 6.15.0 - 6.15.10linux

linux/Kernel 6.16.0 - 6.16.1linux

linux/linux_kernel 6.15 - 6.15.10

Published Aug 19, 2025

Tracked Since Feb 18, 2026