CVE-2025-22040HIGH 8.8EPSS p42.7%

CVE-2025-22040CVE-2025-22040

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix session use-after-free in multichannel connection There is a race condition between session setup and ksmbd_sessions_deregister. The session can be freed before the connection is added to channel list of session. This patch check reference count of session before freeing it.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.57% probability of exploitation · percentile 42.7% · 2026-06-18T12:00:27Z
Published2025-04-16
Last modified2026-04-06

Underlying weaknesses· 1

CWE-416

References

  1. https://git.kernel.org/stable/c/3980770cb1470054e6400fd97668665975726737
  2. https://git.kernel.org/stable/c/596407adb9af1ee75fe7c7529607783d31b66e7f
  3. https://git.kernel.org/stable/c/7dfbd4c43eed91dd2548a95236908025707a8dfd
  4. https://git.kernel.org/stable/c/9069939d762138e232a6f79e3e1462682ed6a17d
  5. https://git.kernel.org/stable/c/94c281721d4ed2d972232414b91d98a6f5bdb16b
  6. https://git.kernel.org/stable/c/fa4cdb8cbca7d6cb6aa13e4d8d83d1103f6345db
  7. https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

1

TypeTargetConfidenceTier
WeaknessUse After Freecwe-4160%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-22041
CVE
CVE-2026-31409
CVE
CVE-2026-23228
CVE
CVE-2026-43379
CVE
CVE-2026-43239
CVE
CVE-2026-31476
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.