VDB
CVE-2025-39919
CVE-2025-39919
PUBLISHED
CVSS 5.5 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: add missing check for rx wcid entries Non-station wcid entries must not be passed to the rx functions. In case of the global wcid entry, it could even lead to corruption in the wcid array due to pointer being casted to struct mt7996_sta_link using container_of.
EPSS 0.02% · 5.7th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.02%
5.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | 7464b12b7d92b9641d4664735b9f3c3f0b6173d9, 7464b12b7d92b9641d4664735b9f3c3f0b6173d9, 6.15 |
| linux | linux_kernel | 6.15, 6.15, 6.15 |
Exploit Intelligence
- https://git.kernel.org/stable/c/69dcc19048fcdc3fb166fd25b805470ee8fc0eb1 (circl)
- https://git.kernel.org/stable/c/4a522b01e368eec58d182ecc47d24f49a39e440d (circl)
- CVE-2025-38222.yara (github-yara)
- CVE-2025-38222.yara (github-yara)
- CVE-2025-38222.yara (github-yara)
- CVE-2025-38222.yara (github-yara)
- CVE-2025-38222.yara (github-yara)
- CVE-2025-38424.yara (github-yara)
- CVE-2025-38424.yara (github-yara)
- CVE-2025-38424.yara (github-yara)
…and 2 more exploits
Timeline
- Jan 21, 1970 Security Advisory
- Oct 1, 2025 EPSS Score
- Oct 1, 2025 CVE Published
- Oct 4, 2025 Coalition ESS Score
- Oct 6, 2025 Coalition ESS Score
- Oct 8, 2025 EPSS Score
- Oct 11, 2025 Coalition ESS Score
- Oct 12, 2025 PoC Published
- Oct 14, 2025 EPSS Score
- Oct 21, 2025 EPSS Score
- Oct 27, 2025 EPSS Score
- Nov 3, 2025 EPSS Score