THREAT OPS › Threat News › [NVD] CVE-2025-21706 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: only set fullmesh for subflow endp
With the in-kernel path-manager, it is possible to change the 'fullmesh'
flag. The code in mptcp_pm_nl_fullmesh() expects to change it only on
'subflow' endpoints,
[NVD] CVE-2025-21706 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only set fullmesh for subflow endp With the in-kernel path-manager, it is possible to change the 'fullmesh' flag. The code in mptcp_pm_nl_fullmesh() expects to change it only on 'subflow' endpoints,
CVE-2025-21706 CVSS: 5.5 MEDIUM Published: 2025-02-27T02:15:14.237
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: only set fullmesh for subflow endp
With the in-kernel path-manager, it is possible to change the 'fullmesh' flag. The code in mptcp_pm_nl_fullmesh() expects to change it only on 'subflow' endpoints, to recreate more or less subflows using the linked a
Indicators of compromise
- CVE-2025-21706cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-21706