CVE-2026-23315

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the mt76 module related to out-of-bounds access within the mt76 connac2 mac write txwi 80211() function. A check for frame length is insufficient, potentially allowing access to management fields, specifically mgmt->u.action.u.addba req.capab, leading to a possible out-of-bounds access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2026-23315

ECHO-1615-E37B-A859

OPENSUSE-SU-2026:20826-1

SUSE-SU-2026:21841-1

SUSE-SU-2026:21845-1

SUSE-SU-2026:21860-1

SUSE-SU-2026:21876-1

SUSE-SU-2026:21877-1

SUSE-SU-2026:21916-1

SUSE-SU-2026:21919-1

SUSE-SU-2026:2217-1

Affected Products

Linux Kernel

Mt76

CVE-2026-23315

Weakness Enumeration

Related Identifiers

Affected Products

References · 22