CVE-2019-9502: Broadcom wl driver is vulnerable to heap buffer overflow
First published: Mon Feb 03 2020(Updated: )
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164 bytes, a heap buffer overflow is triggered in wlc_wpa_plumb_gtk. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Synology Router Manager | =1.2 | |
| Broadcom Bcm4339 Firmware | ||
| Broadcom Bcm4339 | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://source.android.com/docs/security/bulletin/2020-07-01/#asterisk
- https://source.android.com/docs/security/bulletin/2020-07-01 (Advisory)
- https://www.bleepingcomputer.com/news/security/broadcom-wifi-driver-flaws-expose-computers-phones-iot-to-rce-attacks/
- https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html
- https://kb.cert.org/vuls/id/166939/
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2019-9502?
CVE-2019-9502 is a vulnerability in the Broadcom wl WiFi driver that allows for a heap buffer overflow, potentially leading to remote code execution.
Which software is affected by CVE-2019-9502?
Software affected by CVE-2019-9502 includes Google Android, Synology Router Manager (version 1.2), and Broadcom Bcm4339 Firmware.
How severe is the vulnerability CVE-2019-9502?
The severity of CVE-2019-9502 is rated as critical, with a severity score of 8.8.
How can I fix the vulnerability CVE-2019-9502?
To fix the vulnerability CVE-2019-9502, it is recommended to apply the latest security patches and updates provided by the respective vendors.
Where can I find more information about CVE-2019-9502?
More information about CVE-2019-9502 can be found on the official Android Security Bulletin website and the Quarkslab blog post.
- collector/nvd-index
- agent/type
- agent/references
- agent/author
- agent/description
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2019-8564
- alias/CVE-2019-9500
- alias/CVE-2019-9501
- alias/CVE-2019-9502
- alias/CVE-2019-9503
- agent/weakness
- agent/news-ai
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/tags
- vendor/synology
- canonical/synology router manager
- version/synology router manager/1.2
- vendor/broadcom
- canonical/broadcom bcm4339 firmware
- canonical/broadcom bcm4339
- vendor/google
- canonical/google android