CVE-2024-47721

HIGH7.1

wifi: rtw89: remove unused C2H event ID RTW89_MAC_C2H_FUNC_READ_WOW_CAM to prevent out-of-bounds reading

Published Oct 21, 2024

Modified 8 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw89: remove unused C2H event ID RTW89_MAC_C2H_FUNC_READ_WOW_CAM to prevent out-of-bounds reading

The handler of firmware C2H event RTW89_MAC_C2H_FUNC_READ_WOW_CAM isn't implemented, but driver expects number of handlers is NUM_OF_RTW89_MAC_C2H_FUNC_WOW causing out-of-bounds access. Fix it by removing ID.

Addresses-Coverity-ID: 1598775 ("Out-of-bounds read")

References

WEBhttps://git.kernel.org/stable/c/10463308b9454f534d03300cf679bc4b3d078f46 WEBhttps://git.kernel.org/stable/c/2c9c2d1a20916589497a7facbea3e82cabec4ab8 WEBhttps://git.kernel.org/stable/c/56310ddb50b190b3390fdc974aec455d0a516bd2 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2024-47721

CVSS Analysis

CVSS v3.1

7.1

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

HighA:H

7.1/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Ecosystems

Timeline

PublishedOct 21, 2024

ModifiedMay 4, 2025

CVE-2024-47721 | Mondoo Vulnerability Intelligence