CVE-2023-53321

medium

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211_hwsim: drop short frames While technically some control frames like ACK are shorter and end after Address 1, such frames shouldn't be forwarded through wmediumd or similar userspace, so require the full 3-address header to avoid accessing invalid memory if shorter frames are passed in.

References

https://git.kernel.org/stable/c/fba360a047d5eeeb9d4b7c3a9b1c8308980ce9a6

https://git.kernel.org/stable/c/c64ee9dd335832d5e2ab0a8fc83a34ad4c729799

https://git.kernel.org/stable/c/b9a175e3b250b0dc6e152988040aa5014e98e61e

https://git.kernel.org/stable/c/89a41ed7f21476301659ebd25ccb48a60791c1a7

https://git.kernel.org/stable/c/672205c6f2d11978fcd7f0f336bb2c708e28874b

https://git.kernel.org/stable/c/3beb97bed860d95b14ad23578ce8ddaea62023db

Details

Source: Mitre, NVD

Published: 2025-09-16

Updated: 2025-09-17

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00024