CVE-2019-14814

Q: What is the severity of CVE-2019-14814?

CVE-2019-14814 has a CVSS score of 7.8 (HIGH). A heap-based buffer overflow vulnerability exists in the Marvell WiFi chip driver in Linux kernel versions up to (but excluding) 5.3. This allows local users to cause denial of service (system crash) or potentially execute arbitrary code. Systems using affected Linux kernel versions with Marvell WiFi hardware are vulnerable.

7.8 HIGH

Denial of Service

📋 TL;DR

A heap-based buffer overflow vulnerability exists in the Marvell WiFi chip driver in Linux kernel versions up to (but excluding) 5.3. This allows local users to cause denial of service (system crash) or potentially execute arbitrary code. Systems using affected Linux kernel versions with Marvell WiFi hardware are vulnerable.

💻 Affected Systems

Products:

Linux kernel with Marvell WiFi driver (mwifiex)

Versions: All versions up to, but excluding, Linux kernel 5.3

Operating Systems: Linux distributions using vulnerable kernel versions

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects systems with Marvell WiFi hardware using the mwifiex driver; other systems are not vulnerable.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

Learn more about Linux Kernel →

Linux Kernel by Linux

Learn more about Linux Kernel →

Linux Kernel by Linux

Learn more about Linux Kernel →

Linux Kernel by Linux

Learn more about Linux Kernel →

Linux Kernel by Linux

Learn more about Linux Kernel →

Messaging Realtime Grid by Redhat

View all CVEs affecting Messaging Realtime Grid →

Service Processor by Netapp

View all CVEs affecting Service Processor →

Solidfire by Netapp

View all CVEs affecting Solidfire →

Steelstore Cloud Integrated Storage by Netapp

View all CVEs affecting Steelstore Cloud Integrated Storage →

Ubuntu Linux by Canonical

View all CVEs affecting Ubuntu Linux →

Ubuntu Linux by Canonical

View all CVEs affecting Ubuntu Linux →

Ubuntu Linux by Canonical

View all CVEs affecting Ubuntu Linux →

Ubuntu Linux by Canonical

View all CVEs affecting Ubuntu Linux →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local privilege escalation leading to full system compromise and arbitrary code execution as root.

🟠

Likely Case

Denial of service through kernel panic or system crash, disrupting operations.

🟢

If Mitigated

Limited to denial of service if exploit fails or system has additional protections like kernel hardening.

🌐 Internet-Facing: LOW (requires local access, not remotely exploitable over network).

🏢 Internal Only: HIGH (local attackers or compromised accounts can exploit this for privilege escalation or DoS).

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires local access and knowledge of the vulnerability; public proof-of-concept code exists.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Linux kernel 5.3 and later

Vendor Advisory: http://www.openwall.com/lists/oss-security/2019/08/28/1

Restart Required: Yes

Instructions:

1. Update Linux kernel to version 5.3 or later. 2. Apply vendor-specific kernel patches if available. 3. Reboot the system to load the new kernel.

🔧 Temporary Workarounds

Disable Marvell WiFi driver

linux

Unload the vulnerable mwifiex kernel module to prevent exploitation.

sudo modprobe -r mwifiex
sudo modprobe -r mwifiex_usb
sudo modprobe -r mwifiex_sdio
sudo modprobe -r mwifiex_pcie

Blacklist Marvell WiFi driver

linux

Prevent the vulnerable driver from loading at boot.

echo 'blacklist mwifiex' | sudo tee /etc/modprobe.d/blacklist-mwifiex.conf
echo 'blacklist mwifiex_usb' | sudo tee -a /etc/modprobe.d/blacklist-mwifiex.conf
echo 'blacklist mwifiex_sdio' | sudo tee -a /etc/modprobe.d/blacklist-mwifiex.conf
echo 'blacklist mwifiex_pcie' | sudo tee -a /etc/modprobe.d/blacklist-mwifiex.conf

🧯 If You Can't Patch

Restrict local user access to minimize attack surface.
Implement kernel hardening features like SELinux or AppArmor to limit impact.

🔍 How to Verify

Check if Vulnerable:

Check kernel version and if mwifiex module is loaded: uname -r && lsmod | grep mwifiex

Check Version:

uname -r

Verify Fix Applied:

Confirm kernel version is 5.3 or later and mwifiex module is not loaded or patched: uname -r && lsmod | grep mwifiex

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs in /var/log/kern.log or dmesg
System crash or unexpected reboots

Network Indicators:

None (local exploit only)

SIEM Query:

Search for kernel panic events or module loading failures related to mwifiex.

📊 Metadata

CVE ID: CVE-2019-14814

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-122

Published: September 20, 2019

Last Updated: November 21, 2024

🔗 References

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html Mailing List,Third Party Advisory
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html Third Party Advisory,VDB Entry
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html Third Party Advisory,VDB Entry
http://www.openwall.com/lists/oss-security/2019/08/28/1 Exploit,Mailing List,Patch,Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0174 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0328 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0339 Third Party Advisory
https://access.redhat.com/security/cve/cve-2019-14814 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14814 Exploit,Issue Tracking,Patch,Third Party Advisory
https://github.com/torvalds/linux/commit/7caac62ed598a196d6ddf8d9c121e12e082cac3a Patch,Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html Mailing List,Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html Mailing List,Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3RUDQJXRJQVGHCGR4YZWTQ3ECBI7TXH/ Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4JZ6AEUKFWBHQAROGMQARJ274PQP2QP/ Third Party Advisory
https://seclists.org/bugtraq/2019/Nov/11 Mailing List,Patch,Third Party Advisory
https://security.netapp.com/advisory/ntap-20191031-0005/ Third Party Advisory
https://usn.ubuntu.com/4157-1/ Third Party Advisory
https://usn.ubuntu.com/4157-2/ Third Party Advisory
https://usn.ubuntu.com/4162-1/ Third Party Advisory
https://usn.ubuntu.com/4162-2/ Third Party Advisory
https://usn.ubuntu.com/4163-1/ Third Party Advisory
https://usn.ubuntu.com/4163-2/ Third Party Advisory
https://www.openwall.com/lists/oss-security/2019/08/28/1 Exploit,Mailing List,Patch,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html Mailing List,Third Party Advisory
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html Third Party Advisory,VDB Entry
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html Third Party Advisory,VDB Entry
http://www.openwall.com/lists/oss-security/2019/08/28/1 Exploit,Mailing List,Patch,Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0174 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0328 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0339 Third Party Advisory
https://access.redhat.com/security/cve/cve-2019-14814 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14814 Exploit,Issue Tracking,Patch,Third Party Advisory
https://github.com/torvalds/linux/commit/7caac62ed598a196d6ddf8d9c121e12e082cac3a Patch,Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html Mailing List,Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html Mailing List,Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O3RUDQJXRJQVGHCGR4YZWTQ3ECBI7TXH/ Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4JZ6AEUKFWBHQAROGMQARJ274PQP2QP/ Third Party Advisory
https://seclists.org/bugtraq/2019/Nov/11 Mailing List,Patch,Third Party Advisory
https://security.netapp.com/advisory/ntap-20191031-0005/ Third Party Advisory
https://usn.ubuntu.com/4157-1/ Third Party Advisory
https://usn.ubuntu.com/4157-2/ Third Party Advisory
https://usn.ubuntu.com/4162-1/ Third Party Advisory
https://usn.ubuntu.com/4162-2/ Third Party Advisory
https://usn.ubuntu.com/4163-1/ Third Party Advisory
https://usn.ubuntu.com/4163-2/ Third Party Advisory
https://www.openwall.com/lists/oss-security/2019/08/28/1 Exploit,Mailing List,Patch,Third Party Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

A220 Firmware by Netapp

A320 Firmware by Netapp

A700s Firmware by Netapp

A800 Firmware by Netapp

C190 Firmware by Netapp

Data Availability Services by Netapp

Debian Linux by Debian

Enterprise Linux by Redhat

Enterprise Linux by Redhat

Enterprise Linux by Redhat

Enterprise Linux by Redhat

Enterprise Linux Eus by Redhat

Enterprise Linux Eus by Redhat

Enterprise Linux Eus by Redhat

Enterprise Linux For Real Time by Redhat

Enterprise Linux For Real Time For Nfv by Redhat

Enterprise Linux For Real Time For Nfv Tus by Redhat

Enterprise Linux For Real Time For Nfv Tus by Redhat

Enterprise Linux For Real Time Tus by Redhat

Enterprise Linux For Real Time Tus by Redhat

Enterprise Linux Server Aus by Redhat

Enterprise Linux Server Aus by Redhat

Enterprise Linux Server Tus by Redhat

Enterprise Linux Server Tus by Redhat

Fas2720 Firmware by Netapp

Fas2750 Firmware by Netapp

H300e Firmware by Netapp

H300s Firmware by Netapp

H410c Firmware by Netapp

H410s Firmware by Netapp

H500e Firmware by Netapp

H500s Firmware by Netapp

H610s Firmware by Netapp

H700e Firmware by Netapp

H700s Firmware by Netapp

Hci Management Node by Netapp

Leap by Opensuse

Leap by Opensuse

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Messaging Realtime Grid by Redhat

Service Processor by Netapp

Solidfire by Netapp

Steelstore Cloud Integrated Storage by Netapp

Ubuntu Linux by Canonical

Ubuntu Linux by Canonical

Ubuntu Linux by Canonical

Ubuntu Linux by Canonical

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Disable Marvell WiFi driver

Blacklist Marvell WiFi driver

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities