CVE-2025-38128 | Linux Kernel up to 6.15.2 Bluetooth mgmt_hci_cmd_sync privilege escalation

Inserito da Angelo Barbosa | Lug 3, 2025 | CVE

A vulnerability classified as problematic has been found in Linux Kernel up to 6.15.2. This affects the function mgmt_hci_cmd_sync of the component Bluetooth. The manipulation leads to privilege escalation.

This vulnerability is uniquely identified as CVE-2025-38128. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-38128 | Linux Kernel up to 6.15.2 Bluetooth mgmt_hci_cmd_sync privilege escalation

Post correlati

CVE-2024-12408 | wpseahorse WP on AWS Plugin up to 5.2.1 on WordPress cross site scripting

CVE-2024-51901 | Wojciech Borowicz Smooth Maps Plugin up to 1.1 on WordPress cross site scripting

CVE-2025-21092 | GMOD Apollo up to 2.7.x privileges assignment (icsa-25-063-07)

CVE-2023-44001 | Ailand Clinic mini-app on Line 13.6.1 Channel Access Token information disclosure