Improper access control in Linux kernel - CVE-2026-43052
Published: May 2, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause unintended side effects in wireless configuration.
The vulnerability exists due to improper access control in ieee80211_tdls_oper when handling NL80211_TDLS_ENABLE_LINK operations for non-TDLS stations. A local user can trigger the operation on a non-TDLS station to cause unintended side effects in wireless configuration.