CVE Details
Basic Information
| Title |
CVE-2025-37949 |
| Type |
cve |
| Published |
2025-05-20T16:15:32 |
| Last Seen |
2025-05-20T16:21:32 |
CVSS Information
| Base Score |
0.0 () |
| Attack Vector |
|
| Attack Complexity |
|
| Privileges Required |
|
| User Interaction |
|
| Scope |
|
| Confidentiality Impact |
|
| Integrity Impact |
|
| Availability Impact |
|
AI Analysis
| AI Description |
A NULL pointer dereference vulnerability was found in the Linux kernel’s xenbus component, potentially causing a kernel crash. This issue was resolved by using kref to track request lifetime. The vulnerability could allow a local attacker to cause a denial of service. |
| AI Severity |
Medium |
| Vendor |
The Linux Foundation |
| Product |
Linux Kernel |
| Affected Version |
|
Additional Information
| CVE List |
CVE-2025-37949 |
| CWE List |
|
| Bulletin Family |
cve |
Description
In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL pointer fault in the xenbus_thread callstack: BUG: kernel NULL pointer dereference, address: 0000000000000000 RIP:…
CVSS Score Summary
Base Score: %!f(string=#) ()
View Full CVE Details
