CVE-2025-40301 | Linux Kernel up to 6.1.158/6.6.116/6.12.57/6.17.7 Bluetooth hci_cmd_complete_evt privilege escalation

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.158/6.6.116/6.12.57/6.17.7. This impacts the function hci_cmd_complete_evt of the component Bluetooth. The manipulation leads to privilege escalation.

This vulnerability is traded as CVE-2025-40301. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More