Use-After-Free Vulnerability in Linux Kernel Affecting Broadcom Wireless Driver
CVE-2022-50408

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2022-50408?

A use-after-free vulnerability exists in the Broadcom wireless driver (brcmfmac) within the Linux kernel. This flaw occurs during the data transmission process where the driver may attempt to access freed memory, leading to potential system instability or exploitation. The issue arises in the brcmf_netdev_start_xmit function, where certain conditions, such as task scheduling, can result in the driver attempting to read from an address that has already been freed, potentially affecting system performance and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux b1a2a41126fc582a3d5613aa2d3e632b2eb1a2c4 < 1613a7b24f1a7467cb727ba3ec77c9a808383560

Linux b1a2a41126fc582a3d5613aa2d3e632b2eb1a2c4

Linux b1a2a41126fc582a3d5613aa2d3e632b2eb1a2c4 < 49c742afd60f552fce7799287080db02bffe1db2

References

https://git.kernel.org/stable/c/1613a7b24f1a7467cb727ba3e...

https://git.kernel.org/stable/c/d79f4d903e14dde822c60b5fd...

https://git.kernel.org/stable/c/49c742afd60f552fce7799287...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025

JSON

Linux

What is CVE-2022-50408?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.