CVE-2017-3196

CVE-2017-3196

Vendor Printing Communications Assoc., Inc. (Pcausa)
Product ASUS PCE-AC56 WLAN Card Utilities
Weakness CWE-119
Published December 15, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

PCAUSA Rawether framework does not properly validate BPF data, allowing a crafted malicious BPF program to perform operations on memory outside of its typical bounds on the driver's receipt of network packets. Local attackers can exploit this issue to execute arbitrary code with SYSTEM privileges.

Key dates

02Disclosure timeline

December 15, 2017 CVE published
August 5, 2024 Record updated