CVE-2025-40002 | Linux Kernel up to 6.17.2 thunderbolt cancel_delayed_work use after free

A vulnerability has been found in Linux Kernel up to 6.17.2 and classified as critical. The impacted element is the function cancel_delayed_work of the component thunderbolt. This manipulation causes use after free.

This vulnerability is tracked as CVE-2025-40002. The attack is only possible within the local network. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More