CVE-2025-40089 | Linux Kernel up to 6.17.4/6.18-rc1 EDAC Call cxl_feature_info null pointer dereference

Inserito da Angelo Barbosa | Ott 30, 2025 | CVE

A vulnerability classified as critical has been found in Linux Kernel up to 6.17.4/6.18-rc1. This vulnerability affects the function cxl_feature_info of the component EDAC Call Handler. This manipulation causes null pointer dereference.

This vulnerability appears as CVE-2025-40089. The attacker needs to be present on the local network. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2025-40089 | Linux Kernel up to 6.17.4/6.18-rc1 EDAC Call cxl_feature_info null pointer dereference

Post correlati

CVE-2025-6057 | WPBookit Plugin up to 1.0.4 on WordPress handle_image_upload unrestricted upload

CVE-2023-50710 | honojs hono up to 3.11.6 path code injection

CVE-2024-7085 | OpenText Solutions Business Manager up to 12.2.1 cross site scripting

CVE-2024-46958 | Nextcloud Desktop Client 3.13.1/3.13.2/3.13.3 on Linux permission (Issue 6863)