Medium severity5.5NVD Advisory· Published Mar 12, 2025· Updated May 12, 2026

CVE-2025-21848

Description

In the Linux kernel, the following vulnerability has been resolved:

nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()

Add check for the return value of nfp_app_ctrl_msg_alloc() in nfp_bpf_cmsg_alloc() to prevent null pointer dereference.

No patches discovered yet.

AI mechanics synthesis has not run for this CVE yet.

No linked articles in our index yet.

MediumCVSS v3.1

5.5/ 10

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Probability of exploitation in the next 30 days.

0.02%

Composite of severity, exploitation, and reach.

0.36medium

CVE-2025-21848