CVE-2026-53022
Received Received - Intake
Buffer Overflow in Dell WMI System Management Driver

Publication date: 2026-06-24

Last updated on: 2026-06-24

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populate_enum_data() aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individual source string but then appends every string and separator with raw strcat() and no remaining-space check. Switch the aggregation loops to a bounded append helper and reject enumeration packages whose combined strings do not fit in the destination buffers. [ij: add include]
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-24
Last Modified
2026-06-24
Generated
2026-06-25
AI Q&A
2026-06-24
EPSS Evaluated
N/A
NVD
CVE-2026-53022
EUVD
EUVD-2026-38890
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's platform/x86 dell-wmi-sysman component, specifically in the function populate_enum_data(). This function aggregates firmware-provided strings into fixed-size 512-byte structure members. Although each individual string is bounded, the code appends all strings and separators using raw strcat() calls without checking if there is enough remaining space in the buffer. This can lead to buffer overflow issues because the combined strings may exceed the buffer size.

The fix involved switching to a bounded append helper function that ensures the combined strings fit within the destination buffers, rejecting enumeration packages that do not fit.

Impact Analysis

This vulnerability can lead to buffer overflow in the Linux kernel component handling firmware enumeration strings. Buffer overflows can cause system instability, crashes, or potentially allow an attacker to execute arbitrary code with kernel privileges, leading to a compromise of the system's security.

Mitigation Strategies

The vulnerability has been resolved in the Linux kernel by switching the aggregation loops to a bounded append helper and rejecting enumeration packages whose combined strings do not fit in the destination buffers.

To mitigate this vulnerability, you should update your Linux kernel to the fixed version that includes this patch.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53022. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart