High severity7.8NVD Advisory· Published Dec 16, 2017· Updated May 13, 2026

CVE-2017-3196

Description

PCAUSA Rawether framework does not properly validate BPF data, allowing a crafted malicious BPF program to perform operations on memory outside of its typical bounds on the driver's receipt of network packets. Local attackers can exploit this issue to execute arbitrary code with SYSTEM privileges.

Affected products

Printing Communications Assoc., Inc. (PCAUSA)/ASUS PCE-AC56 WLAN Card Utilitiesv5
Range: Unknown

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.rewolf.pl/blog/nvdExploitThird Party Advisory
www.kb.cert.org/vuls/id/600671nvdExploitMitigationThird Party AdvisoryUS Government Resource
www.securityfocus.com/bid/96993/discussnvdThird Party AdvisoryVDB Entry
www.itsecuritynews.info/vuln-printing-communications-association-rawether-cve-2017-3196-local-privilege-escalation-vulnerability/nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000