CVE-2025-37796

HIGH EPSS 5.6%
Published May 1, 20251y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: at76c50x: fix use after free access in at76_disconnect The memory pointed to by priv is freed at the end of at76_delete_device function (using ieee80211_free_hw). But the code then accesses the udev field of the freed object to put the USB device. This may also lead to a memory leak of the usb device. Fix this by using udev from interface.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
5.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 13

VendorProductVersionRange
linuxlinux_kernel*≥3.17.1  –  <5.4.293
linuxlinux_kernel*≥5.5  –  <5.10.237
linuxlinux_kernel*≥5.11  –  <5.15.181
linuxlinux_kernel*≥5.16  –  <6.1.135
linuxlinux_kernel*≥6.2  –  <6.6.88
linuxlinux_kernel*≥6.7  –  <6.12.25
linuxlinux_kernel*≥6.13  –  <6.14.4
linuxlinux_kernel3.17any
linuxlinux_kernel3.17any
linuxlinux_kernel3.17any
linuxlinux_kernel3.17any
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/152721cbae42713ecfbca6847e0f102ee6b19546
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/27c7e63b3cb1a20bb78ed4a36c561ea4579fd7da
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3c619aec1f538333b56746d2f796aab1bca5c9a5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5e7df74745700f059dc117a620e566964a2e8f2c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6e4ab3e574c2a335b40fa1f70d1c54fcb58ab33f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ca513631fa6ad3011b8b9197cdde0f351103704
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a9682bfef2cf3802515a902e964d774e137be1b9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c731cdfddcf1be1590d5ba8c9b508f98e3a2b3d6
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/152721cbae42713ecfbca6847e0f102ee6b19546
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/27c7e63b3cb1a20bb78ed4a36c561ea4579fd7da
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3c619aec1f538333b56746d2f796aab1bca5c9a5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5e7df74745700f059dc117a620e566964a2e8f2c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6e4ab3e574c2a335b40fa1f70d1c54fcb58ab33f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ca513631fa6ad3011b8b9197cdde0f351103704
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a9682bfef2cf3802515a902e964d774e137be1b9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c731cdfddcf1be1590d5ba8c9b508f98e3a2b3d6
    Patch