PT-2024-21461 · Asus+1 · Asus Rt-Ac53U+1

Coldolt

Published

2024-04-02

Updated

2025-02-03

CVE-2024-26683

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Linux kernel's wifi functionality, specifically with the cfg80211 module. A problem was introduced when validation was added to prevent connections to an Access Point (AP) that is currently in a channel switch process. This caused new connection failures because some APs, like the Asus RT-AC53 with firmware 3.0.0.4.380 10760-g21a5898, permanently advertise an extended channel switch announcement. The kernel now attempts to detect such situations to handle them appropriately.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

BDU:2026-06034

CVE-2024-26683

SUSE-SU-2024:3194-1

SUSE-SU-2024:3195-1

SUSE-SU-2024:3383-1

SUSE-SU-2025:20044-1

SUSE-SU-2025:20047-1

Affected Products

Asus Rt-Ac53U

Suse

PT-2024-21461 · Asus+1 · Asus Rt-Ac53U+1

CVE-2024-26683

Weakness Enumeration

Related Identifiers

Affected Products

References · 913