CVE-2025-21800

Published Feb 27, 2025

Last updated 10 days ago

CVSS high 7.8

Overview

Description: In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, fix definer's HWS_SET32 macro for negative offset When bit offset for HWS_SET32 macro is negative, UBSAN complains about the shift-out-of-bounds: UBSAN: shift-out-of-bounds in drivers/net/ethernet/mellanox/mlx5/core/steering/hws/definer.c:177:2 shift exponent -8 is negative
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD status: Analyzed
Products: linux_kernel

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

🚨 CVE-2025-21800 ❓ 🏢 Linux - Linux 🏗️ 74a778b4a63faef9ff02aad0d332b209835f93e1 🔗 https://t.co/1eAhdPRm3H 🔗 https://t.co/wWtY5DVNek 🔗 https://t.co/juw6ZWaZFQ #CyberCron #VulnAlert @Linux https://t.co/bBPrsaHVW1
@cybercronai
1 Mar 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8507AA00-C52F-4231-94AC-4D0374F5A9F5",
            "versionEndExcluding": "6.12.13",
            "versionStartIncluding": "6.12"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D4116B1-1BFD-4F23-BA84-169CC05FC5A3",
            "versionEndExcluding": "6.13.2",
            "versionStartIncluding": "6.13"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References