PT-2026-37420 · Linux+1 · Linux Kernel+1

Published

2026-05-06

Updated

2026-06-16

CVE-2026-43110

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description In the brcmfmac component of the Linux kernel, the brcmf fweh handle if event() function fails to perform a range check on the bsscfgidx field provided by the firmware. This allows the raw index to be used to access the drvr->iflist[] array without validation, which could lead to an out-of-bounds access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2026:21556

ALSA-2026:21557

ALSA-2026:26427

ALSA-2026:26428

CVE-2026-43110

RHSA-2026:21556

RHSA-2026:21557

RHSA-2026:23237

RHSA-2026:24343

RHSA-2026:25218

RHSA-2026:25533

Affected Products

Linux Kernel

Rocky Linux

PT-2026-37420 · Linux+1 · Linux Kernel+1

CVE-2026-43110

Related Identifiers

Affected Products

References · 99