CVE-2023-52832 [Critical] | Security Vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't return unset power in ieee80211_get_tx_power() We can get a UBSAN warning if ieee80211_get_tx_power() returns the INT_MIN value mac80211 internally uses for "unset power level". UBSAN: signed-integer-overflow in net/wireless/nl80211.c:3816:5 -2147483648 * 100 cannot be represented in type 'int' CPU: 0 PID: 20433 Comm: insmod Tainted: G WC OE Call Trace: dump_stack+0x74/0x92 ubsan_epilogue+0x9/0x50 handle_overflow+0x8d/0xd0 __ubsan_handle_mul_overflow+0xe/0x10 nl80211_send_iface+0x688/0x6b0 [cfg80211] [...] cfg80211_register_wdev+0x78/0xb0 [cfg80211] cfg80211_netdev_notifier_call+0x200/0x620 [cfg80211] [...] ieee80211_if_add+0x60e/0x8f0 [mac80211] ieee80211_register_hw+0xda5/0x1170 [mac80211] In this case, simply return an error instead, to indicate that no data is available.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	0.09%	1.27%	+1.18%
2	2025-11-21	2.52%	0.09%	-2.43%
3	2025-11-18	—	2.52%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-06-15

0.09%

1.27%

+1.18%

2025-11-21

2.52%

0.09%

-2.43%

2025-11-18

—

2.52%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
9.1	3.1	CRITICAL	`CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H` Click to expand Attack vector (AV:N) Could be attacked over the internet or any normal routed network—not just someone sitting at the machine. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:N) No account or special rights needed—anonymous or random user is enough. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:H) Serious risk that confidential data gets exposed in a big way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	3.9	5.2	134c704f-9b21-4f2e-91b3-4a467353bcc0

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

9.1

3.1

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H Click to expand

Attack vector (AV:N): Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N): No account or special rights needed—anonymous or random user is enough.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H): Serious risk that confidential data gets exposed in a big way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

3.9

5.2

134c704f-9b21-4f2e-91b3-4a467353bcc0

OS Trackers for CVE-2023-52832

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2023-52832 not yet assigned priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2023-52832
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2023-52832
`suse`	medium	—	https://www.suse.com/security/cve/CVE-2023-52832/
`ubuntu`	medium	CVE-2023-52832 medium priority: Ubuntu including 160 source packages (linux, linux-allwinner-5.19, …), 1686 status rows across 11 suites (bionic, focal, jammy, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): DNE 1267, released 161, ignored 148, not-affected 88, needed 20, needs-triage 2.	https://ubuntu.com/security/CVE-2023-52832

Affected software / configurations for CVE-2023-52832

Vendor	Product	Version	Raw CPE
linux	linux_kernel	< 4.14.331	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.15, < 4.19.300	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.20, < 5.4.262	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.5, < 5.10.202	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.11, < 5.15.140	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.16, < 6.1.64	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 6.2, < 6.5.13	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 6.6, < 6.6.3	cpe:2.3:o:linux:linux_kernel::::::::

References for CVE-2023-52832

URL	Tags
https://git.kernel.org/stable/c/21a0f310a9f3bfd2b4cf4f382430e638607db846	Patch
https://git.kernel.org/stable/c/2be24c47ac19bf639c48c082486c08888bd603c6	Patch
https://git.kernel.org/stable/c/5a94cffe90e20e8fade0b9abd4370bd671fe87c7	Patch
https://git.kernel.org/stable/c/717de20abdcd1d4993fa450e28b8086a352620ea	Patch
https://git.kernel.org/stable/c/adc2474d823fe81d8da759207f4f1d3691aa775a	Patch
https://git.kernel.org/stable/c/e160ab85166e77347d0cbe5149045cb25e83937f	Patch
https://git.kernel.org/stable/c/1571120c44dbe5757aee1612c5b6097cdc42710f	Patch
https://git.kernel.org/stable/c/298e767362cade639b7121ecb3cc5345b6529f62	Patch
https://git.kernel.org/stable/c/efeae5f4972f75d50002bc50eb112ab9e7069b18	Patch

URL

CVE-2023-52832 | wifi: mac80211: don't return unset power in ieee80211_get_tx_power()

Exploit prediction scoring system (EPSS) score for CVE-2023-52832

Common vulnerability scoring system (CVSS) metrics for CVE-2023-52832

Weakness enumeration for CVE-2023-52832

OS Trackers for CVE-2023-52832

Affected software / configurations for CVE-2023-52832

References for CVE-2023-52832