Unrated severityNVD Advisory· Published Jul 28, 2025· Updated Nov 3, 2025
usb: net: sierra: check for no status endpoint
CVE-2025-38474
Description
In the Linux kernel, the following vulnerability has been resolved:
usb: net: sierra: check for no status endpoint
The driver checks for having three endpoints and having bulk in and out endpoints, but not that the third endpoint is interrupt input. Rectify the omission.
Affected products
2- Linux/Linuxv5Range: 2.6.34
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- git.kernel.org/stable/c/0a263ccb905b4ae2af381cd4280bd8d2477b98b8mitre
- git.kernel.org/stable/c/4c4ca3c46167518f8534ed70f6e3b4bf86c4d158mitre
- git.kernel.org/stable/c/5408cc668e596c81cdd29e137225432aa40d1785mitre
- git.kernel.org/stable/c/5849980faea1c792d1d5e54fdbf1e69ac0a9bfb9mitre
- git.kernel.org/stable/c/5dd6a441748dad2f02e27b256984ca0b2d4546b6mitre
- git.kernel.org/stable/c/65c666aff44eb7f9079c55331abd9687fb77ba2dmitre
- git.kernel.org/stable/c/a6a238c4126eb3ddb495d3f960193ca5bb778d92mitre
- git.kernel.org/stable/c/bfe8ef373986e8f185d3d6613eb1801a8749837amitre
News mentions
0No linked articles in our index yet.