CVE-2025-38246 | Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 XDP_REDIRECT Feature privilege escalation

Inserito da Angelo Barbosa | Lug 9, 2025 | CVE

A vulnerability has been found in Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component XDP_REDIRECT Feature. The manipulation leads to privilege escalation.

This vulnerability is known as CVE-2025-38246. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-38246 | Linux Kernel up to 6.12.35/6.15.4/6.16-rc3 XDP_REDIRECT Feature privilege escalation

Post correlati

CVE-2023-49786 | Asterisk prior 18.20.1/20.5.1/21.0.1 DTLS unknown vulnerability (GHSA-hxj9-xwr8-w8pq)

CVE-2025-46494 | WidgetKit Pro Plugin up to 1.13.1 on WordPress cross site scripting

CVE-2024-29972 | Zyxel NAS326/NAS542 prior 5.21 HTTP POST Request remote_help-cgi os command injection

CVE-2024-31714 | Waxlab wax up to 0.9-3 Lua Library buffer overflow