High severity8.8NVD Advisory· Published Apr 5, 2017· Updated May 13, 2026

CVE-2017-6956

Description

On the Broadcom Wi-Fi HardMAC SoC with fbt firmware, a stack buffer overflow occurs when handling an 802.11r (FT) authentication response, leading to remote code execution via a crafted access point that sends a long R0KH-ID field in a Fast BSS Transition Information Element (FT-IE).

Affected products

Broadcom Corporation/Hardmac Wi Fi Soc Firmware
cpe:2.3:o:broadcom:hardmac_wi-fi_soc_firmware:6.37.34.40:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.chromium.org/p/project-zero/issues/detailnvdThird Party Advisory
googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_4.htmlnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000