How to fix EUVD-2025-32340?

Within 7 days: Identify all affected systems and apply vendor patches promptly. Vendor patch is available.

Is Linux Kernel affected by EUVD-2025-32340?

CVE-2022-50508 presents moderate security risk, a out-of-bounds read vulnerability rated CVSS 7.1. Exploitation could compromise the security of affected deployments. A patch is available and should be applied as part of regular vulnerability management.

EUVD-2025-32340

| CVE-2022-50508 HIGH

2025-10-04 416baaa9-dc9f-4396-8d5f-8c081fb06d67

7.1

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

High

Lifecycle Timeline

Patch Released

Mar 25, 2026 - 00:38 nvd

Patch available

Analysis Generated

Mar 13, 2026 - 19:56 vuln.today

EUVD ID Assigned

Mar 13, 2026 - 19:56 euvd

EUVD-2025-32340

CVE Published

Oct 04, 2025 - 16:15 nvd

HIGH 7.1

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt76x0: fix oob access in mt76x0_phy_get_target_power After 'commit ba45841ca5eb ("wifi: mt76: mt76x02: simplify struct mt76x02_rate_power")', mt76x02 relies on ht[0-7] rate_power data for vht mcs{0,7}, while it uses vth[0-1] rate_power for vht mcs {8,9}. Fix a possible out-of-bound access in mt76x0_phy_get_target_power routine.

Analysis

Technical Context

An out-of-bounds memory access occurs when code reads from or writes to memory locations outside the intended buffer boundaries. This vulnerability is classified as Out-of-bounds Read (CWE-125).

Affected Products

Affected products: Linux Linux Kernel

Remediation

A vendor patch is available — apply it immediately. Implement proper bounds checking on all array and buffer accesses. Use memory-safe languages or static analysis tools to detect OOB issues.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +36

POC: 0

Vendor Status

EUVD-2025-32340 vulnerability details – vuln.today

Back

EUVD-2025-32340

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

EUVD-2025-32340

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

External POC / Exploit Code