CVE-2025-40193

medium

Description

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user could pass an arbitrarily bad value to memdup_user_nul(), potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 ("netdevsim: prevent bad user input in nsim_dev_health_break_write()")

References

https://git.kernel.org/stable/c/f40405ccfb87b71175f2d5d004c0b8a0aebcc2cf

https://git.kernel.org/stable/c/d381de7fd4cdc928ede96987dc64b133e6480dd6

https://git.kernel.org/stable/c/a0c2c36d864ef3676b05cfd8c58b72ee3214cb1a

https://git.kernel.org/stable/c/5d5f08fd0cd970184376bee07d59f635c8403f63

https://git.kernel.org/stable/c/151bd88859474cdaccc1e4c8b21fbf72dbba2ab4

Details

Source: Mitre, NVD

Published: 2025-11-12

Updated: 2025-11-14

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018