Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

Vulnerability IntelligenceCVE-2025-38057

CVE-2025-38057

MEDIUM5.5

espintcp: fix skb leaks

Published Jun 18, 2025

Modified 1 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

espintcp: fix skb leaks

A few error paths are missing a kfree_skb.

References

WEB

https://git.kernel.org/stable/c/05db2b850a2b8b17f3d1799f563ea1d550e05ed5

WEB

https://git.kernel.org/stable/c/28756f22de48d25256ed89234b66b9037a3f0157

WEB

https://git.kernel.org/stable/c/63c1f19a3be3169e51a5812d22a6d0c879414076

WEB

https://git.kernel.org/stable/c/d8d79cf8c2b7475c22f9874eb844bcc80f858b13

WEB

https://git.kernel.org/stable/c/e2e1f50fc5ebd2826c4e8c558dc65434382d0c0b

WEB

https://git.kernel.org/stable/c/eb058693dfc93ed7a9c365adb899fedd648b9d9f

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2025-38057

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedJun 18, 2025

ModifiedFeb 6, 2026

CVE-2025-38057 | Mondoo Vulnerability Intelligence