Vulnerabilities ›

CVE-2026-43267

Medium

CWE-369 — Weakness Type

                    Published: May 6, 2026                      ·  Modified: May 9, 2026                      ·  Source: NVD                

CVSS v3

5.5

🔗 NVD Official

📄 Description (English)

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw89: fix potential zero beacon interval in beacon tracking

During fuzz testing, it was discovered that bss_conf->beacon_int
might be zero, which could result in a division by zero error in
subsequent calculations. Set a default value of 100 TU if the
interval is zero to ensure stability.

🤖 AI Executive Summary

A division by zero vulnerability exists in the Linux kernel's rtw89 WiFi driver when processing beacon intervals set to zero. The fix implements a default beacon interval of 100 TU to prevent kernel crashes during beacon tracking operations.

📄 Description (Arabic)

تم اكتشاف ثغرة في برنامج تشغيل WiFi rtw89 بنواة Linux حيث قد تكون قيمة bss_conf->beacon_int مساوية للصفر. هذا يؤدي إلى خطأ القسمة على صفر في العمليات الحسابية اللاحقة. يتم حل المشكلة بتعيين قيمة افتراضية قدرها 100 وحدة زمنية عند اكتشاف فترة صفرية.

🤖 ملخص تنفيذي (AI)

🤖 AI Intelligence Analysis Analyzed: May 25, 2026 02:49

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: medium

🏢 Affected Saudi Sectors

telecom government healthcare

🎯 MITRE ATT&CK Techniques

T1499.004

⚖️ Saudi Risk Score (AI)

5.0

/ 10.0

🔧 Remediation Steps (English)

Update the Linux kernel to the latest patched version that includes the rtw89 beacon interval fix. Ensure beacon_int validation is performed before division operations and apply default value of 100 TU when zero is detected.

🔧 خطوات المعالجة (العربية)

قم بتحديث نواة Linux إلى أحدث إصدار مصحح يتضمن إصلاح فترة المنارة في rtw89. تأكد من التحقق من صحة beacon_int قبل عمليات القسمة وتطبيق القيمة الافتراضية 100 TU عند اكتشاف الصفر.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.12.6.1 A.14.2.1

🔵 SAMA CSF

ID.BE-5.1 PR.PT-2.1

🟡 ISO 27001:2022

A.12.6.1 A.14.2.1

🔗 References & Sources 3

🔗

https://git.kernel.org/stable/c/1260bee01493126cf9c872b6ca2af261173baa6d

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

🔗

https://git.kernel.org/stable/c/e00c9a4ec84c0bb067833b34202f457badbbc1c1

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

🔗

https://git.kernel.org/stable/c/eb57be32f438c57c88d6ce756101c1dfbcc03bba

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

📦 Affected Products / CPE 2 entries

linux:linux_kernel

📊 CVSS Score

5.5

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack VectorL — Low / Local

Attack ComplexityL — Low / Local

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityN — None / Network

AvailabilityH — High

📋 Quick Facts

Severity Medium

CVSS Score5.5

CWECWE-369

EPSS0.01%

Exploit No

Patch ✓ Yes

Published 2026-05-06

Source Feed nvd

🇸🇦 Saudi Risk Score

5.0

/ 10.0 — Saudi Risk

Priority: MEDIUM

🏷️ Tags

patch-available CWE-369

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-43267

💬 Comments

Introduce Yourself

Sign In Required