-

CVE-2025-38173

EPSS 0.04%
Veröffentlicht 03.07.2025 08:36:10
Zuletzt bearbeitet 03.07.2025 15:13:53
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

crypto: marvell/cesa - Handle zero-length skcipher requests

Do not access random memory for zero-length skcipher requests.
Just return 0.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 32d3e8049a8b60f18c5c39f5931bfb1130ac11c9

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < c064ae2881d839709bd72d484d5f2af157f46024

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < e1cc69da619588b1488689fe3535a0ba75a2b0e7

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < 78ea1ff6cb413a03ff6f7af4e28e24b4461a0965

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < 5e9666ac8b94c978690f937d59170c5237bd2c45

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < 7894694b5d5b2ecfd7fb081d6f60b9e169ab4d13

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < c9610dda42bd382a96f97e68825cb5f66cd9e1dc

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

Version < 8a4e047c6cc07676f637608a9dd675349b5de0a7

Version f63601fd616ab370774fa00ea10bcaaa9e48e84c

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.2

Status affected

Version < 4.2

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.295

Status unaffected

Version <= 5.10.*

Version 5.10.239

Status unaffected

Version <= 5.15.*

Version 5.15.186

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.94

Status unaffected

Version <= 6.12.*

Version 6.12.34

Status unaffected

Version <= 6.15.*

Version 6.15.3

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.097

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/32d3e8049a8b60f18c5c39f5931bfb1130ac11c9

https://git.kernel.org/stable/c/c064ae2881d839709bd72d484d5f2af157f46024

https://git.kernel.org/stable/c/e1cc69da619588b1488689fe3535a0ba75a2b0e7

https://git.kernel.org/stable/c/78ea1ff6cb413a03ff6f7af4e28e24b4461a0965

https://git.kernel.org/stable/c/5e9666ac8b94c978690f937d59170c5237bd2c45

https://git.kernel.org/stable/c/7894694b5d5b2ecfd7fb081d6f60b9e169ab4d13

https://git.kernel.org/stable/c/c9610dda42bd382a96f97e68825cb5f66cd9e1dc

https://git.kernel.org/stable/c/8a4e047c6cc07676f637608a9dd675349b5de0a7

https://nvd.nist.gov/vuln/detail/CVE-2025-38173

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38173

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38173

EUVD