Wiz
Vulnerability DatabaseCVE-2025-38599

CVE-2025-38599
Linux Ubuntu vulnerability analysis and mitigation

Overview

CVE-2025-38599 is a vulnerability discovered in the Linux kernel affecting the WiFi subsystem, specifically in the mt76 driver for MediaTek MT7996 wireless chipsets. The vulnerability was disclosed on August 19, 2025, and involves a potential Out-Of-Boundary access issue in the mt7996_tx routine (NVD).

Technical details

The vulnerability occurs in the mt7996tx() function of the Linux kernel's mt76 WiFi driver when the linkid parameter is set to IEEE80211LINKUNSPECIFIED, which can lead to an Out-Of-Boundary access condition. This issue specifically affects the MediaTek MT7996 wireless chipset implementation (NVD).

Impact

The vulnerability could potentially lead to Out-Of-Boundary access in affected systems, which may result in system instability or potential security implications for systems using the MT7996 wireless chipset (NVD).

Mitigation and workarounds

The vulnerability has been resolved through patches in various Linux kernel versions. Multiple Linux distributions have released updates to address this issue, including fixes in Ubuntu's kernel packages for various versions such as 6.8.0-40.40 for noble, 5.15.0-121.131 for jammy, and 5.4.0-192.212 for focal releases (Ubuntu).

Additional resources

SourceThis report was generated using AI

Related Linux Ubuntu vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-64460HIGH7.5
  • Linux DebianLinux Debian
  • python-django
NoYesDec 02, 2025
CVE-2025-13735HIGH7.4
  • Linux UbuntuLinux Ubuntu
  • linux-fips
NoNoNov 26, 2025
CVE-2025-13372MEDIUM4.3
  • Linux DebianLinux Debian
  • py3-django
NoYesDec 02, 2025
CVE-2025-2486LOW3.7
  • Linux UbuntuLinux Ubuntu
  • edk2
NoYesNov 26, 2025
CVE-2025-66270N/AN/A
  • Linux DebianLinux Debian
  • kdeconnect
NoYesNov 27, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo