CVE-2025-38035 | Linux Kernel up to 6.14.8 TCP Connection nvmet_tcp_set_queue_sock null pointer dereference

Inserito da Angelo Barbosa | Giu 18, 2025 | CVE

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.14.8. Affected is the function nvmet_tcp_set_queue_sock of the component TCP Connection Handler. The manipulation leads to null pointer dereference.

This vulnerability is traded as CVE-2025-38035. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-38035 | Linux Kernel up to 6.14.8 TCP Connection nvmet_tcp_set_queue_sock null pointer dereference

Post correlati

CVE-2023-49158 | LadiApp Plugin up to 4.3 on WordPress authorization

CVE-2025-22641 | Prem Tiwari FM Notification Bar Plugin up to 1.0.2 on WordPress cross site scripting

CVE-2023-52728 | Open Networking Foundation SD-RAN ONOS onos-lib-go 0.10.25 putBitString array index (Issue 245)

CVE-2024-11842 | Weight DN Shipping for WooCommerce Plugin up to 1.1 on WordPress Setting cross-site request forgery