-

CVE-2025-38180

EPSS 0.04%
Veröffentlicht 04.07.2025 13:37:08
Zuletzt bearbeitet 08.07.2025 16:18:53
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

net: atm: fix /proc/net/atm/lec handling

/proc/net/atm/lec must ensure safety against dev_lec[] changes.

It appears it had dev_put() calls without prior dev_hold(),
leading to imbalance and UAF.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < fcfccf56f4eba7d00aa2d33c7bb1b33083237742

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < f2d1443b18806640abdb530e88009af7be2588e7

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < ca3829c18c8d0ceb656605d3bff6bb3dfb078589

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < e612c4b014f5808fbc6beae21f5ccaca5e76a2f8

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < a5e3a144268899f1a8c445c8a3bfa15873ba85e8

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 5fe1b23a2f87f43aeeac51e08819cbc6fd808cbc

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 9b9aeb3ada44d8abea1e31e4446113f460848ae4

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < d03b79f459c7935cff830d98373474f440bd03ae

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.12

Status affected

Version < 2.6.12

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.295

Status unaffected

Version <= 5.10.*

Version 5.10.239

Status unaffected

Version <= 5.15.*

Version 5.15.186

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.95

Status unaffected

Version <= 6.12.*

Version 6.12.35

Status unaffected

Version <= 6.15.*

Version 6.15.4

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.097

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/fcfccf56f4eba7d00aa2d33c7bb1b33083237742

https://git.kernel.org/stable/c/f2d1443b18806640abdb530e88009af7be2588e7

https://git.kernel.org/stable/c/ca3829c18c8d0ceb656605d3bff6bb3dfb078589

https://git.kernel.org/stable/c/e612c4b014f5808fbc6beae21f5ccaca5e76a2f8

https://git.kernel.org/stable/c/a5e3a144268899f1a8c445c8a3bfa15873ba85e8

https://git.kernel.org/stable/c/5fe1b23a2f87f43aeeac51e08819cbc6fd808cbc

https://git.kernel.org/stable/c/9b9aeb3ada44d8abea1e31e4446113f460848ae4

https://git.kernel.org/stable/c/d03b79f459c7935cff830d98373474f440bd03ae

https://nvd.nist.gov/vuln/detail/CVE-2025-38180

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38180

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38180

EUVD