CVE-2025-71127

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the mac80211 component related to the handling of Beacon frames. Specifically, the system does not properly discard Beacon frames sent to a non-broadcast address. While the current implementation discards unicast Beacon frames when the Protected Frame bit is 0, it fails to do so when the bit is 1, potentially bypassing beacon protection. This could allow a targeted attack, potentially leveraging CSA to move associated stations to another channel. The issue is addressed by discarding all Beacon frames sent to a non-broadcast address.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-71127

ECHO-DA84-D9CA-C37E

MGASA-2026-0017

MGASA-2026-0018

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

USN-8141-1

USN-8163-1

USN-8163-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8243-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

USN-8277-1

USN-8277-2

USN-8310-1

USN-8374-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-71127

Related Identifiers

Affected Products

References · 859