[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-38523":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":228,"aliases":229,"duplicate_of":9,"upstream":230,"downstream":231,"duplicates":250,"related":251,"reserved_at":9,"published_at":252,"modified_at":253,"state":254,"summary":255,"references_raw":264,"kevs":279,"epss":280,"epss_history":283,"metrics":549,"affected":555},"CVE-2025-38523","In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: Fix the smbd_response slab to allow usercopy\n\nThe handling of received data in the smbdirect client code involves using\ncopy_to_iter() to copy data from the smbd_reponse struct's packet trailer\nto a folioq buffer provided by netfslib that encapsulates a chunk of\npagecache.\n\nIf, however, CONFIG_HARDENED_USERCOPY=y, this will result in the checks\nthen performed in copy_to_iter() oopsing with something like the following:\n\n CIFS: Attempting to mount //172.31.9.1/test\n CIFS: VFS: RDMA transport established\n usercopy: Kernel memory exposure attempt detected from SLUB object 'smbd_response_0000000091e24ea1' (offset 81, size 63)!\n ------------[ cut here ]------------\n kernel BUG at mm/usercopy.c:102!\n ...\n RIP: 0010:usercopy_abort+0x6c/0x80\n ...\n Call Trace:\n  \u003CTASK>\n  __check_heap_object+0xe3/0x120\n  __check_object_size+0x4dc/0x6d0\n  smbd_recv+0x77f/0xfe0 [cifs]\n  cifs_readv_from_socket+0x276/0x8f0 [cifs]\n  cifs_read_from_socket+0xcd/0x120 [cifs]\n  cifs_demultiplex_thread+0x7e9/0x2d50 [cifs]\n  kthread+0x396/0x830\n  ret_from_fork+0x2b8/0x3b0\n  ret_from_fork_asm+0x1a/0x30\n\nThe problem is that the smbd_response slab's packet field isn't marked as\nbeing permitted for usercopy.\n\nFix this by passing parameters to kmem_slab_create() to indicate that\ncopy_to_iter() is permitted from the packet region of the smbd_response\nslab objects, less the header space.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-1188","Initialization of a Resource with an Insecure Default","The product initializes or sets a resource with a default that is intended to be changed by the product's installer, administrator, or maintainer, but the default is not secure.","weakness","Incomplete","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-665","Exploitation of Thunderbolt Protection Flaws",[23,60,100],{"id":24,"name":25,"tactics":26,"countermeasures":33},"T1211","Exploitation for Stealth",[27,30],{"id":28,"name":29},"TA0030","Defense Evasion",{"id":31,"name":32},"TA0005","Stealth",[34,39,43,47,52,56],{"id":35,"name":36,"tactic":37},"D3-MBT","Memory Boundary Tracking",{"name":38},"Detect",{"id":40,"name":41,"tactic":42},"D3-PCSV","Process Code Segment Verification",{"name":38},{"id":44,"name":45,"tactic":46},"D3-SSC","Shadow Stack Comparisons",{"name":38},{"id":48,"name":49,"tactic":50},"D3-PSEP","Process Segment Execution Prevention",{"name":51},"Harden",{"id":53,"name":54,"tactic":55},"D3-SAOR","Segment Address Offset Randomization",{"name":51},{"id":57,"name":58,"tactic":59},"D3-SFCV","Stack Frame Canary Validation",{"name":51},{"id":61,"name":62,"tactics":63,"countermeasures":69},"T1542.002","Component Firmware",[64,65,66],{"id":28,"name":29},{"id":31,"name":32},{"id":67,"name":68},"TA0110","Persistence",[70,75,79,83,87,91,95],{"id":71,"name":72,"tactic":73},"D3-SWI","Software Inventory",{"name":74},"Model",{"id":76,"name":77,"tactic":78},"D3-AVE","Asset Vulnerability Enumeration",{"name":74},{"id":80,"name":81,"tactic":82},"D3-FEMC","Firmware Embedded Monitoring Code",{"name":38},{"id":84,"name":85,"tactic":86},"D3-FV","Firmware Verification",{"name":38},{"id":88,"name":89,"tactic":90},"D3-FBA","Firmware Behavior Analysis",{"name":38},{"id":92,"name":93,"tactic":94},"D3-SU","Software Update",{"name":51},{"id":96,"name":97,"tactic":98},"D3-RS","Restore Software",{"name":99},"Restore",{"id":101,"name":102,"tactics":103,"countermeasures":112},"T1556","Modify Authentication Process",[104,105,108,109],{"id":28,"name":29},{"id":106,"name":107},"TA0112","Defense Impairment",{"id":67,"name":68},{"id":110,"name":111},"TA0031","Credential Access",[113,117,121,125,129,133,137,141,145,149,154,158,162,166,170,175,179,183,187,192,196,200,204,208,212,216,220,224],{"id":114,"name":115,"tactic":116},"D3-CI","Configuration Inventory",{"name":74},{"id":118,"name":119,"tactic":120},"D3-NTPM","Network Traffic Policy Mapping",{"name":74},{"id":122,"name":123,"tactic":124},"D3-AM","Access Modeling",{"name":74},{"id":126,"name":127,"tactic":128},"D3-FA","File Analysis",{"name":38},{"id":130,"name":131,"tactic":132},"D3-FIM","File Integrity Monitoring",{"name":38},{"id":134,"name":135,"tactic":136},"D3-PLA","Process Lineage Analysis",{"name":38},{"id":138,"name":139,"tactic":140},"D3-PSMD","Process Self-Modification Detection",{"name":38},{"id":142,"name":143,"tactic":144},"D3-PSA","Process Spawn Analysis",{"name":38},{"id":146,"name":147,"tactic":148},"D3-SFA","System File Analysis",{"name":38},{"id":150,"name":151,"tactic":152},"D3-FEV","File Eviction",{"name":153},"Evict",{"id":155,"name":156,"tactic":157},"D3-PT","Process Termination",{"name":153},{"id":159,"name":160,"tactic":161},"D3-PS","Process Suspension",{"name":153},{"id":163,"name":164,"tactic":165},"D3-HR","Host Reboot",{"name":153},{"id":167,"name":168,"tactic":169},"D3-HS","Host Shutdown",{"name":153},{"id":171,"name":172,"tactic":173},"D3-DF","Decoy File",{"name":174},"Deceive",{"id":176,"name":177,"tactic":178},"D3-FE","File Encryption",{"name":51},{"id":180,"name":181,"tactic":182},"D3-RF","Restore File",{"name":99},{"id":184,"name":185,"tactic":186},"D3-RC","Restore Configuration",{"name":99},{"id":188,"name":189,"tactic":190},"D3-CF","Content Filtering",{"name":191},"Isolate",{"id":193,"name":194,"tactic":195},"D3-LFP","Local File Permissions",{"name":191},{"id":197,"name":198,"tactic":199},"D3-RFAM","Remote File Access Mediation",{"name":191},{"id":201,"name":202,"tactic":203},"D3-CQ","Content Quarantine",{"name":191},{"id":205,"name":206,"tactic":207},"D3-CM","Content Modification",{"name":191},{"id":209,"name":210,"tactic":211},"D3-KBPI","Kernel-based Process Isolation",{"name":191},{"id":213,"name":214,"tactic":215},"D3-SCF","System Call Filtering",{"name":191},{"id":217,"name":218,"tactic":219},"D3-HBPI","Hardware-based Process Isolation",{"name":191},{"id":221,"name":222,"tactic":223},"D3-ABPI","Application-based Process Isolation",{"name":191},{"id":225,"name":226,"tactic":227},"D3-WSAM","Web Session Access Mediation",{"name":191},[],[],[],[232,234,236,238,240,242,244,246,248],{"_key":233},"RHSA-2025:16904",{"_key":235},"DEBIAN-CVE-2025-38523",{"_key":237},"UBUNTU-CVE-2025-38523",{"_key":239},"USN-7833-1",{"_key":241},"USN-7833-2",{"_key":243},"USN-7833-3",{"_key":245},"USN-7833-4",{"_key":247},"USN-7834-1",{"_key":249},"USN-7856-1",[],[],"2025-08-16T11:12:17.254Z","2026-05-11T21:29:40.179Z","Analyzed",{"cisa_kev":256,"cisa_ransomware":256,"cisa_vendor":9,"epss_severity":257,"epss_score":258,"severity":259,"severity_score":260,"severity_version":261,"severity_source":262,"severity_vector":263,"severity_status":254},false,"low",0.00018,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[265,271,275],{"url":266,"sources":267,"tags":269},"https://git.kernel.org/stable/c/87dcc7e33fc3dcb8ed32333cec016528b5bb6ce4",[268,262],"cve.org",[270],"Patch",{"url":272,"sources":273,"tags":274},"https://git.kernel.org/stable/c/f0dd353d47f7051afa98c6c60c7486831eb1a410",[268,262],[270],{"url":276,"sources":277,"tags":278},"https://git.kernel.org/stable/c/43e7e284fc77b710d899569360ea46fa3374ae22",[268,262],[270],[],{"date":281,"score":258,"percentile":282},"2026-06-03",0.05103,[284,288,290,293,296,298,301,304,307,310,313,316,319,322,325,328,332,335,338,341,343,346,349,352,355,358,361,364,367,370,373,376,379,382,385,387,390,393,396,399,402,404,407,411,414,417,420,423,426,429,432,435,438,441,444,447,450,453,456,459,462,465,468,471,474,477,480,482,485,488,492,496,498,501,504,507,510,512,514,517,520,522,526,529,532,535,538,541,543,546],{"date":285,"score":286,"percentile":287},"2025-11-04",0.00025,0.05442,{"date":289,"score":286,"percentile":287},"2025-11-05",{"date":291,"score":286,"percentile":292},"2025-11-06",0.05561,{"date":294,"score":286,"percentile":295},"2025-11-07",0.05571,{"date":297,"score":286,"percentile":292},"2025-11-08",{"date":299,"score":286,"percentile":300},"2025-11-09",0.05555,{"date":302,"score":286,"percentile":303},"2025-11-10",0.05535,{"date":305,"score":286,"percentile":306},"2025-11-11",0.05568,{"date":308,"score":286,"percentile":309},"2025-11-12",0.05601,{"date":311,"score":286,"percentile":312},"2025-11-13",0.05621,{"date":314,"score":286,"percentile":315},"2025-11-14",0.05658,{"date":317,"score":286,"percentile":318},"2025-11-15",0.05684,{"date":320,"score":286,"percentile":321},"2025-11-16",0.0569,{"date":323,"score":286,"percentile":324},"2025-11-17",0.05683,{"date":326,"score":286,"percentile":327},"2025-11-18",0.0336,{"date":329,"score":330,"percentile":331},"2025-11-19",0.00017,0.02083,{"date":333,"score":330,"percentile":334},"2025-11-20",0.02119,{"date":336,"score":330,"percentile":337},"2025-11-21",0.03303,{"date":339,"score":330,"percentile":340},"2025-11-22",0.03306,{"date":342,"score":330,"percentile":337},"2025-11-23",{"date":344,"score":330,"percentile":345},"2025-11-24",0.03283,{"date":347,"score":330,"percentile":348},"2025-11-25",0.03276,{"date":350,"score":330,"percentile":351},"2025-11-26",0.0328,{"date":353,"score":330,"percentile":354},"2025-11-27",0.03288,{"date":356,"score":330,"percentile":357},"2025-11-28",0.03291,{"date":359,"score":330,"percentile":360},"2025-11-29",0.03334,{"date":362,"score":330,"percentile":363},"2025-11-30",0.03335,{"date":365,"score":330,"percentile":366},"2025-12-01",0.03421,{"date":368,"score":330,"percentile":369},"2025-12-02",0.03426,{"date":371,"score":330,"percentile":372},"2025-12-03",0.03434,{"date":374,"score":330,"percentile":375},"2025-12-04",0.03369,{"date":377,"score":330,"percentile":378},"2025-12-05",0.03404,{"date":380,"score":330,"percentile":381},"2025-12-06",0.03419,{"date":383,"score":330,"percentile":384},"2025-12-07",0.03424,{"date":386,"score":330,"percentile":366},"2025-12-08",{"date":388,"score":330,"percentile":389},"2025-12-09",0.03447,{"date":391,"score":330,"percentile":392},"2025-12-10",0.03491,{"date":394,"score":330,"percentile":395},"2025-12-11",0.03481,{"date":397,"score":330,"percentile":398},"2025-12-12",0.03487,{"date":400,"score":330,"percentile":401},"2025-12-13",0.03485,{"date":403,"score":330,"percentile":401},"2025-12-14",{"date":405,"score":330,"percentile":406},"2025-12-15",0.03472,{"date":408,"score":409,"percentile":410},"2025-12-16",0.00022,0.0526,{"date":412,"score":409,"percentile":413},"2025-12-17",0.05323,{"date":415,"score":409,"percentile":416},"2025-12-18",0.05357,{"date":418,"score":409,"percentile":419},"2025-12-19",0.05343,{"date":421,"score":409,"percentile":422},"2025-12-20",0.05346,{"date":424,"score":409,"percentile":425},"2025-12-21",0.05339,{"date":427,"score":409,"percentile":428},"2025-12-22",0.05281,{"date":430,"score":409,"percentile":431},"2025-12-23",0.0529,{"date":433,"score":409,"percentile":434},"2025-12-24",0.05327,{"date":436,"score":409,"percentile":437},"2025-12-25",0.0536,{"date":439,"score":409,"percentile":440},"2025-12-26",0.05365,{"date":442,"score":409,"percentile":443},"2025-12-27",0.05363,{"date":445,"score":409,"percentile":446},"2025-12-28",0.05356,{"date":448,"score":409,"percentile":449},"2025-12-29",0.0535,{"date":451,"score":409,"percentile":452},"2025-12-30",0.0531,{"date":454,"score":409,"percentile":455},"2025-12-31",0.05342,{"date":457,"score":409,"percentile":458},"2026-01-01",0.05423,{"date":460,"score":409,"percentile":461},"2026-01-02",0.05418,{"date":463,"score":409,"percentile":464},"2026-01-03",0.05381,{"date":466,"score":409,"percentile":467},"2026-01-04",0.05278,{"date":469,"score":409,"percentile":470},"2026-01-05",0.05229,{"date":472,"score":409,"percentile":473},"2026-01-06",0.05226,{"date":475,"score":409,"percentile":476},"2026-01-07",0.05246,{"date":478,"score":409,"percentile":479},"2026-01-08",0.05299,{"date":481,"score":409,"percentile":479},"2026-01-09",{"date":483,"score":409,"percentile":484},"2026-01-10",0.05304,{"date":486,"score":409,"percentile":487},"2026-01-11",0.05284,{"date":489,"score":490,"percentile":491},"2026-01-12",0.00011,0.01027,{"date":493,"score":494,"percentile":495},"2026-01-13",0.0001,0.00932,{"date":497,"score":494,"percentile":495},"2026-01-14",{"date":499,"score":494,"percentile":500},"2026-01-15",0.00938,{"date":502,"score":494,"percentile":503},"2026-01-16",0.00943,{"date":505,"score":494,"percentile":506},"2026-01-17",0.00942,{"date":508,"score":494,"percentile":509},"2026-01-18",0.00949,{"date":511,"score":494,"percentile":509},"2026-01-19",{"date":513,"score":494,"percentile":506},"2026-01-20",{"date":515,"score":494,"percentile":516},"2026-01-21",0.00937,{"date":518,"score":494,"percentile":519},"2026-01-22",0.00941,{"date":521,"score":494,"percentile":509},"2026-01-23",{"date":523,"score":524,"percentile":525},"2026-01-24",0.00012,0.01427,{"date":527,"score":524,"percentile":528},"2026-01-25",0.01426,{"date":530,"score":524,"percentile":531},"2026-01-26",0.01423,{"date":533,"score":524,"percentile":534},"2026-01-27",0.01409,{"date":536,"score":524,"percentile":537},"2026-01-28",0.01407,{"date":539,"score":524,"percentile":540},"2026-01-29",0.01418,{"date":542,"score":524,"percentile":531},"2026-01-30",{"date":544,"score":524,"percentile":545},"2026-01-31",0.01438,{"date":547,"score":524,"percentile":548},"2026-02-01",0.0146,[550],{"source":262,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":551,"cvss_v4_0":9},{"baseScore":260,"baseSeverity":552,"vectorString":263,"impactScore":553,"exploitabilityScore":554},"MEDIUM",6,4.6,[556,576],{"ecosystem":9,"name":557,"vendor":558,"product":558,"cpe_part":559,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":560},"Linux","linux","a",[561,568,571,574],{"version":562,"is_range":563,"range_type":268,"version_start":564,"version_start_type":565,"version_end":566,"version_end_type":567,"fixed_in":9},">= ee4cdf7ba857a894ad1650d6ab77669cbbfa329e, \u003C 87dcc7e33fc3dcb8ed32333cec016528b5bb6ce4",true,"ee4cdf7ba857a894ad1650d6ab77669cbbfa329e","including","87dcc7e33fc3dcb8ed32333cec016528b5bb6ce4","excluding",{"version":569,"is_range":563,"range_type":268,"version_start":564,"version_start_type":565,"version_end":570,"version_end_type":567,"fixed_in":9},">= ee4cdf7ba857a894ad1650d6ab77669cbbfa329e, \u003C f0dd353d47f7051afa98c6c60c7486831eb1a410","f0dd353d47f7051afa98c6c60c7486831eb1a410",{"version":572,"is_range":563,"range_type":268,"version_start":564,"version_start_type":565,"version_end":573,"version_end_type":567,"fixed_in":9},">= ee4cdf7ba857a894ad1650d6ab77669cbbfa329e, \u003C 43e7e284fc77b710d899569360ea46fa3374ae22","43e7e284fc77b710d899569360ea46fa3374ae22",{"version":575,"is_range":256,"range_type":268,"version_start":575,"version_start_type":565,"version_end":575,"version_end_type":565,"fixed_in":9},"6.12",{"ecosystem":9,"name":577,"vendor":558,"product":578,"cpe_part":579,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":580},"linux kernel","linux_kernel","o",[581,585,589,591,593],{"version":582,"is_range":563,"range_type":583,"version_start":575,"version_start_type":565,"version_end":584,"version_end_type":567,"fixed_in":9},"gte6.12_lt6.12.36","cpe","6.12.36",{"version":586,"is_range":563,"range_type":583,"version_start":587,"version_start_type":565,"version_end":588,"version_end_type":567,"fixed_in":9},"gte6.13_lt6.15.8","6.13","6.15.8",{"version":590,"is_range":256,"range_type":583,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.16:rc1",{"version":592,"is_range":256,"range_type":583,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.16:rc2",{"version":594,"is_range":256,"range_type":583,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.16:rc3"]