Description
In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7925: prevent NULL vif dereference in mt7925_mac_write_txwi

Check for a NULL `vif` before accessing `ieee80211_vif_is_mld(vif)` to
avoid a potential kernel panic in scenarios where `vif` might not be
initialized.
Published: 2026-06-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A NULL pointer dereference occurs in the mt7925 WiFi driver when the variable vif is not initialized. This flaw can trigger a kernel panic, terminating system operation and leading to a denial‑of‑service condition. The weakness corresponds to CWE‑476 (Null Pointer Dereference).

Affected Systems

The affected product is the Linux kernel when it includes the mt76/mt7925 WiFi driver stack. No specific kernel release numbers are listed, so any kernel build that contains this driver without the patch is potentially vulnerable.

Risk and Exploitability

The EPSS score is < 1%. The CVSS score is 5.5, indicating moderate severity. The vulnerability is not listed in the CISA KEV catalog. The vulnerability allows an attacker to cause a critical crash through crafted WiFi traffic that exercises the uninitialized pointer. The likely attack vector is network‑layer exploits via malicious frames that trigger the missing initialization check. Because a single received packet can bring the system down, the flaw requires interaction with the driver, suggesting a local or network‑level attack rather than remote code execution.

Generated by OpenCVE AI on June 26, 2026 at 03:01 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a version that contains the mt7925 NULL dereference fix identified in the upstream commit.
  • If patching is not immediately possible, disable the mt76/mt7925 WiFi driver or the wireless interface to prevent the vulnerable code from executing.
  • If using a source‑built kernel without the official patch, apply the upstream patch manually, rebuild, and install the kernel to ensure the NULL check is present.

Generated by OpenCVE AI on June 26, 2026 at 03:01 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate


Wed, 24 Jun 2026 22:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL vif dereference in mt7925_mac_write_txwi Check for a NULL `vif` before accessing `ieee80211_vif_is_mld(vif)` to avoid a potential kernel panic in scenarios where `vif` might not be initialized.
Title wifi: mt76: mt7925: prevent NULL vif dereference in mt7925_mac_write_txwi
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:30:40.632Z

Reserved: 2026-06-09T07:44:35.385Z

Link: CVE-2026-53105

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-06-24T00:00:00Z

Links: CVE-2026-53105 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T03:15:16Z

Weaknesses