The Texas Instruments (TI) WiLink WL18xx MCP driver does not limit the number of information elements (IEs) of type XCC_EXT_1_IE_ID or XCC_EXT_2_IE_ID that can be parsed in a management frame. Using a specially crafted frame, a buffer overflow can be triggered that can potentially lead to remote code execution. This affects WILINK8-WIFI-MCP8 version 8.5_SP3 and earlier.
References
Link | Resource |
---|---|
https://www.ti.com/lit/swra773 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-08-14T00:00:00
Updated: 2023-08-14T00:00:00
Reserved: 2023-04-06T00:00:00
Link: CVE-2023-29468
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-08-14T19:15:11.437
Modified: 2023-08-22T14:41:58.630
Link: CVE-2023-29468
JSON object: View
Redhat Information
No data.
CWE