CVE-2025-22004 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Linux	CNA	---				---
CISA-ADP	ADP	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 2%

Vendor	Product	Version
linux	linux_kernel	2.6.12 ≤ 𝑥 < 6.1.132
linux	linux_kernel	6.2 ≤ 𝑥 < 6.6.85
linux	linux_kernel	6.7 ≤ 𝑥 < 6.12.21
linux	linux_kernel	6.13 ≤ 𝑥 < 6.13.9
linux	linux_kernel	6.14:rc1
linux	linux_kernel	6.14:rc2
linux	linux_kernel	6.14:rc3
linux	linux_kernel	6.14:rc4

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-416 - Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

Vulnerability Media Exposure

[GERMAN] Linux Kernel: Mehrere Schwachstellen
Ein entfernter anonymer Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um einen 'Denial of Service'-Zustand zu erzeugen oder andere nicht spezifizierte Angriffe durchzuführen.
Published: 2025-04-02T22:00:00+00:00

References

https://git.kernel.org/stable/c/326223182e4703cde99fdbd36d07d0b3de9980fb

https://git.kernel.org/stable/c/50e288097c2c6e5f374ae079394436fc29d1e88e

https://git.kernel.org/stable/c/51e8be9578a2e74f9983d8fd8de8cafed191f30c

https://git.kernel.org/stable/c/82d9084a97892de1ee4881eb5c17911fcd9be6f6

https://git.kernel.org/stable/c/8cd90c7db08f32829bfa1b5b2b11fbc542afbab7

https://git.kernel.org/stable/c/9566f6ee13b17a15d0a47667ad1b1893c539f730

https://git.kernel.org/stable/c/f3009d0d6ab78053117f8857b921a8237f4d17b3

https://git.kernel.org/stable/c/f3271f7548385e0096739965961c7cbf7e6b4762