CVE-2025-40039 | Linux Kernel up to 6.12.52/6.17.2 ksmbd_session_rpc_open use after free

October 28, 2025 Yanac

A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.52/6.17.2. Affected is the function ksmbd_session_rpc_open. This manipulation causes use after free.

This vulnerability is handled as CVE-2025-40039. The attack can only be done within the local network. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More