CVE-2026-53093
Awaiting Analysis Awaiting Analysis - Queue

NULL Pointer Dereference in Linux Kernel wifi: brcmfmac Driver

Vulnerability report for CVE-2026-53093, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-24

Last updated on: 2026-07-14

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix error pointer dereference The function brcmf_chip_add_core() can return an error pointer and is not checked. Add checks for error pointer. Detected by Smatch: drivers/net/wireless/broadcom/brcm80211/brcmfmac/chip.c:1010 brcmf_chip_recognition() error: 'core' dereferencing possible ERR_PTR() drivers/net/wireless/broadcom/brcm80211/brcmfmac/chip.c:1013 brcmf_chip_recognition() error: 'core' dereferencing possible ERR_PTR() drivers/net/wireless/broadcom/brcm80211/brcmfmac/chip.c:1016 brcmf_chip_recognition() error: 'core' dereferencing possible ERR_PTR() drivers/net/wireless/broadcom/brcm80211/brcmfmac/chip.c:1019 brcmf_chip_recognition() error: 'core' dereferencing possible ERR_PTR() drivers/net/wireless/broadcom/brcm80211/brcmfmac/chip.c:1022 brcmf_chip_recognition() error: 'core' dereferencing possible ERR_PTR() [add missing wifi: prefix]

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-24
Last Modified
2026-07-14
Generated
2026-07-15
AI Q&A
2026-06-24
EPSS Evaluated
2026-07-13
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
broadcom brcmfmac *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's Broadcom wireless driver (brcmfmac). The function brcmf_chip_add_core() can return an error pointer, but this return value was not properly checked before being dereferenced. This can lead to dereferencing an invalid pointer (ERR_PTR), which may cause unexpected behavior or crashes.

The issue was detected by the Smatch static analysis tool, which identified multiple instances in the brcmfmac driver code where the 'core' pointer could be an error pointer but was dereferenced without validation.

Impact Analysis

If exploited or triggered, this vulnerability can cause the Linux kernel to dereference an invalid pointer within the wireless driver, potentially leading to system instability, crashes, or denial of service. This could disrupt wireless network functionality on affected systems.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53093. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart