CVE-2025-38634

medium

Description

In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-charger: Fix null check for power_supply_get_by_name In the cpcap_usb_detect() function, the power_supply_get_by_name() function may return `NULL` instead of an error pointer. To prevent potential null pointer dereferences, Added a null check.

References

https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a

https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9

https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53

https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d

https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00

https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c

https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560

Details

Source: Mitre, NVD

Published: 2025-08-22

Updated: 2025-08-28

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00024