CVE-2025-38399 | Linux Kernel up to 6.16-rc2 scsi core_scsi3_decode_spec_i_port null pointer dereference
A vulnerability classified as critical has been found in Linux Kernel up to 6.16-rc2. Affected is the function core_scsi3_decode_spec_i_port of the component scsi. The manipulation leads to null pointer dereference.
This vulnerability is traded as CVE-2025-38399. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.VulDB Recent EntriesRead More