CVE-2025-38074 | Linux Kernel up to 6.6.92/6.12.30/6.14.8 vhost_scsi_complete_cmd_work memory corruption

A vulnerability classified as critical was found in Linux Kernel up to 6.6.92/6.12.30/6.14.8. Affected by this vulnerability is the function vhost_scsi_complete_cmd_work. The manipulation leads to memory corruption.

This vulnerability is known as CVE-2025-38074. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More