CVE-2019-9500
CVSS v3.1
8.3 (High)
CVSS v2.0
7.9 (High)
EPSS
0.68 % (80th)
Affected Products
2
Advisories
44
The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmf_wowl_nd_results function. This vulnerability can be exploited with compromised chipsets to compromise the host, or when used in combination with CVE-2019-9503, can be used remotely. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.
Weaknesses
Related CVEs
- CVE Status
- PUBLISHED
- CNA
- CERT/CC
- Published Date
-
2020-01-16 21:15:12
(4 years ago) - Updated Date
-
2023-01-19 15:53:59
(20 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...