CVE-2019-6496

Name of the Vulnerable Software and Affected Versions Marvell Avastar Wi-Fi devices, models 88W8787, 88W8797, 88W8801, 88W8897, and 88W8997

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service via malformed Wi-Fi packets during identification of available Wi-Fi networks. This can potentially lead to exploitation of the host application processor, depending on factors such as host OS hardening and DMA availability.

Recommendations For Marvell Avastar Wi-Fi devices, models 88W8787, 88W8797, 88W8801, 88W8897, and 88W8997, consider disabling the Wi-Fi network identification feature until a patch is available to prevent exploitation. Restrict access to the Wi-Fi device to minimize the risk of arbitrary code execution or denial of service.