In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: properly validate the data in rtw_get_ie_ex()

Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds
read in rtw_get_ie() parser"), we don't trust the data in the frame so
we should check the length better before acting on it

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < ac38856092b4c994f94343251b30520bdeb7f475
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 35969c3a208a07cb8642301df5869c34e2db7071
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 8097a48c606a9306281ea7bd73bf2afc97553733
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 740bca8bbdb707c0e4bb11e3316deb2f04fc7ce1
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 821f7d759fb2de33c5e5b0c4981181c4d0c3e9b1
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 6d62fa548387e159a21ea95132c09bfc96d336ed
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < 9a4cd4c37593cc8b8d28f9a6732b490a8032006a
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 affected < f0109b9d3e1e455429279d602f6276e34689750a
Linux Linux affected
Version Status Constraints
5.10.253 unaffected ≤ 5.10.*
5.15.203 unaffected ≤ 5.15.*
6.1.167 unaffected ≤ 6.1.*
6.6.130 unaffected ≤ 6.6.*
6.12.78 unaffected ≤ 6.12.*
6.18.19 unaffected ≤ 6.18.*
6.19.9 unaffected ≤ 6.19.*
7.0 unaffected ≤ *

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

No data.

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/35969c3a208a07cb8642301df5869c34e2db7071 cve-icon cve-icon
https://git.kernel.org/stable/c/6d62fa548387e159a21ea95132c09bfc96d336ed cve-icon cve-icon
https://git.kernel.org/stable/c/740bca8bbdb707c0e4bb11e3316deb2f04fc7ce1 cve-icon cve-icon
https://git.kernel.org/stable/c/8097a48c606a9306281ea7bd73bf2afc97553733 cve-icon cve-icon
https://git.kernel.org/stable/c/821f7d759fb2de33c5e5b0c4981181c4d0c3e9b1 cve-icon cve-icon
https://git.kernel.org/stable/c/9a4cd4c37593cc8b8d28f9a6732b490a8032006a cve-icon cve-icon
https://git.kernel.org/stable/c/ac38856092b4c994f94343251b30520bdeb7f475 cve-icon cve-icon
https://git.kernel.org/stable/c/f0109b9d3e1e455429279d602f6276e34689750a cve-icon cve-icon
History

Fri, 08 May 2026 17:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
CWE-20

Fri, 08 May 2026 14:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser"), we don't trust the data in the frame so we should check the length better before acting on it
Title staging: rtl8723bs: properly validate the data in rtw_get_ie_ex()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-08T14:21:33.323Z

Reserved: 2026-05-01T14:12:56.006Z

Link: CVE-2026-43387

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-08T15:16:50.060

Modified: 2026-05-08T15:16:50.060

Link: CVE-2026-43387

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-08T17:30:13Z

Weaknesses