CVE-2025-71100

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Linux kernel related to the rtlwifi driver and the 8192cu component. A flaw in the rtl92cu tx fill desc() function can lead to a tid (Traffic Identification) value being out of range for the sta entry->tids[] array. This can trigger an out-of-bounds write, resulting in a UBSAN (Undefined Behavior Sanitizer) warning. The issue occurs when the TID obtained from ieee80211 get tid() exceeds the maximum allowed TID count.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129

Related Identifiers

CVE-2025-71100

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

USN-8177-1

USN-8177-2

USN-8183-1

USN-8183-2

USN-8245-1

USN-8257-1

Affected Products

8192Cu

Linuxmint

Linux Kernel

Ubuntu

Rtlwifi

CVE-2025-71100

Weakness Enumeration

Related Identifiers

Affected Products

References · 1752