-

CVE-2025-38540

EPSS 0.04%
Veröffentlicht 16.08.2025 11:22:14
Zuletzt bearbeitet 18.08.2025 20:16:28
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

HID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras

The Chicony Electronics HP 5MP Cameras (USB ID 04F2:B824 & 04F2:B82C)
report a HID sensor interface that is not actually implemented.
Attempting to access this non-functional sensor via iio_info causes
system hangs as runtime PM tries to wake up an unresponsive sensor.

Add these 2 devices to the HID ignore list since the sensor interface is
non-functional by design and should not be exposed to userspace.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 35f1a5360ac68d9629abbb3930a0a07901cba296

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 7ac00f019698f614a49cce34c198d0568ab0e1c2

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 1b297ab6f38ca60a4ca7298b297944ec6043b2f4

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2b0931eee48208c25bb77486946dea8e96aa6a36

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 3ce1d87d1f5d80322757aa917182deb7370963b9

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < c72536350e82b53a1be0f3bfdf1511bba2827102

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < a2a91abd19c574b598b1c69ad76ad9c7eedaf062

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 54bae4c17c11688339eb73a04fd24203bb6e7494

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version <= 5.4.*

Version 5.4.296

Status unaffected

Version <= 5.10.*

Version 5.10.240

Status unaffected

Version <= 5.15.*

Version 5.15.189

Status unaffected

Version <= 6.1.*

Version 6.1.146

Status unaffected

Version <= 6.6.*

Version 6.6.99

Status unaffected

Version <= 6.12.*

Version 6.12.39

Status unaffected

Version <= 6.15.*

Version 6.15.7

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.125

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/35f1a5360ac68d9629abbb3930a0a07901cba296

https://git.kernel.org/stable/c/7ac00f019698f614a49cce34c198d0568ab0e1c2

https://git.kernel.org/stable/c/1b297ab6f38ca60a4ca7298b297944ec6043b2f4

https://git.kernel.org/stable/c/2b0931eee48208c25bb77486946dea8e96aa6a36

https://git.kernel.org/stable/c/3ce1d87d1f5d80322757aa917182deb7370963b9

https://git.kernel.org/stable/c/c72536350e82b53a1be0f3bfdf1511bba2827102

https://git.kernel.org/stable/c/a2a91abd19c574b598b1c69ad76ad9c7eedaf062

https://git.kernel.org/stable/c/54bae4c17c11688339eb73a04fd24203bb6e7494

https://nvd.nist.gov/vuln/detail/CVE-2025-38540

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38540

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38540

EUVD