CVE-2025-38246 | Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 XDP_REDIRECT Feature privilege escalation

Inserito da Angelo Barbosa | Lug 9, 2025 | CVE

A vulnerability has been found in Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component XDP_REDIRECT Feature. The manipulation leads to privilege escalation.

This vulnerability is known as CVE-2025-38246. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-38246 | Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 XDP_REDIRECT Feature privilege escalation

Post correlati

CVE-2025-5836 | Tenda AC9 15.03.02.13 POST Request /goform/SetIPTVCfg formSetIptv list command injection

CVE-2025-21832 | Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2 blkdev_read_iter data authenticity

CVE-2024-37432 | ThemeGrill Esteem Plugin up to 1.5.0 on WordPress cross site scripting

CVE-2024-3238 | Menu Plugin up to 5.0.29 on WordPress cross-site request forgery