Skip to main content

Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

CVE-2025-21741 | Mondoo Vulnerability Intelligence

CVE-2025-21741

HIGH7.1

usbnet: ipheth: fix DPE OoB read

Published Feb 27, 2025

Modified 3 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

usbnet: ipheth: fix DPE OoB read

Fix an out-of-bounds DPE read, limit the number of processed DPEs to the amount that fits into the fixed-size NDP16 header.

References

WEBhttps://git.kernel.org/stable/c/22475242ddb70e35c9148234be9a3aa9fb8efff9 WEBhttps://git.kernel.org/stable/c/5835bf66c50ac2b85ed28b282c2456c3516ef0a6 WEBhttps://git.kernel.org/stable/c/971b8c572559e52d32a2b82f2d9e0685439a0117 WEBhttps://git.kernel.org/stable/c/ee591f2b281721171896117f9946fced31441418 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2025-21741

CVSS Analysis

CVSS v3.1

7.1

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

HighA:H

7.1/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Ecosystems

Timeline

PublishedFeb 27, 2025

ModifiedOct 1, 2025