CVE-2025-37990

wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()

Severity Score

3.3

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage() The function brcmf_usb_dl_writeimage() calls the function
brcmf_usb_dl_cmd() but dose not check its return value. The
'state.state' and the 'state.bytes' are uninitialized if the
function brcmf_usb_dl_cmd() fails. It is dangerous to use
uninitialized variables in the conditions. Add error handling for brcmf_usb_dl_cmd() to jump to error
handling path if the brcmf_usb_dl_cmd() fails and the
'state.state' and the 'state.bytes' are uninitialized. Improve the error message to report more detailed error
information.

In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Add...

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-04-16 CVE Reserved
2025-05-20 CVE Published
2025-05-20 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/71bb244ba2fd5390eefe4ee9054abdb3f8b05922	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/508be7c001437bacad7b9a43f08a723887bcd1ea	2025-05-09
https://git.kernel.org/stable/c/524b70441baba453b193c418e3142bd31059cc1f	2025-05-09
https://git.kernel.org/stable/c/08424a0922fb9e32a19b09d852ee87fb6c497538	2025-05-09
https://git.kernel.org/stable/c/bdb435ef9815b1ae28eefffa01c6959d0fcf1fa7	2025-05-09
https://git.kernel.org/stable/c/fa9b9f02212574ee1867fbefb0a675362a71b31d	2025-05-09
https://git.kernel.org/stable/c/8e089e7b585d95122c8122d732d1d5ef8f879396	2025-04-23

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 5.15.182 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 5.15.182"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.1.138 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.1.138"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.6.90 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.6.90"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.12.28 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.12.28"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.14.6 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.14.6"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.15-rc5 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.15-rc5"		en		Affected