Vulnerability in Linux

CVE-2025-40301

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: validate skb length for unknown CC opcode In hci_cmd_complete_evt(), if the command complete event has an unknown opcode, we assume the first byte…

EPSS: 0.002 (5.2th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions afcb3369f46ed5dc883a7b92f2dd1e264d79d388, 6.1, 0

References