CVE-2022-23088

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)

Description The issue is related to the 802.11 beacon handling routine, which failed to validate the length of an IEEE 802.11s Mesh ID before copying it to a heap-allocated buffer. This can be exploited by a malicious beacon frame when a FreeBSD Wi-Fi client is in scanning mode, potentially leading to remote code execution. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.