CVE-2025-71100
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-13

Last updated on: 2026-03-25

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc() TID getting from ieee80211_get_tid() might be out of range of array size of sta_entry->tids[], so check TID is less than MAX_TID_COUNT. Othwerwise, UBSAN warn: UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30 index 10 is out of range for type 'rtl_tid_data [9]'
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-13
Last Modified
2026-03-25
Generated
2026-06-16
AI Q&A
2026-01-14
EPSS Evaluated
2026-06-15
NVD
CVE-2025-71100
EUVD
EUVD-2026-2236
Affected Vendors & Products
Showing 11 associated CPEs
Vendor Product Version / Range
linux linux_kernel 6.9
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel From 6.13 (inc) to 6.18.4 (exc)
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel From 6.9.1 (inc) to 6.12.64 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-129 The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs in the Linux kernel's Realtek rtlwifi driver for the 8192cu device. The issue is that the TID (Traffic Identifier) obtained from ieee80211_get_tid() can be out of the valid range for the array sta_entry->tids[]. Without proper checking, this leads to an out-of-bounds array access, which is detected by UBSAN (Undefined Behavior Sanitizer) as an array-index-out-of-bounds error. The fix involves verifying that the TID is less than MAX_TID_COUNT before using it as an index.

Impact Analysis

This vulnerability can cause undefined behavior in the kernel due to out-of-bounds array access, which may lead to system instability, crashes, or potential security issues such as memory corruption. However, no specific exploit or impact details are provided.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-71100. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart