THREATOPS
THREAT OPSThreat News › [NVD] CVE-2025-21731 (HIGH 7.8) — In the Linux kernel, the following vulnerability has been resolved: nbd: don't allow reconnect after disconnect Following process can cause nbd_config UAF: 1) grab nbd_config temporarily; 2) nbd_genl_disconnect() flush all recv_work() and release the initial reference: nbd

[NVD] CVE-2025-21731 (HIGH 7.8) — In the Linux kernel, the following vulnerability has been resolved: nbd: don't allow reconnect after disconnect Following process can cause nbd_config UAF: 1) grab nbd_config temporarily; 2) nbd_genl_disconnect() flush all recv_work() and release the initial reference: nbd

lownvdPublished 2025-02-27

CVE-2025-21731 CVSS: 7.8 HIGH Published: 2025-02-27T02:15:16.833

In the Linux kernel, the following vulnerability has been resolved:

nbd: don't allow reconnect after disconnect

Following process can cause nbd_config UAF:

1) grab nbd_config temporarily;

2) nbd_genl_disconnect() flush all recv_work() and release the initial reference:

nbd_genl_disconnect nbd_disconnect_and_put nbd_dis

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-21731