Linux Kernel Stack Corruption Vulnerability in Ethtool CMIS CDB Module

Vulnerability

A vulnerability in the Linux kernel's ethtool CMIS CDB module can lead to stack corruption, causing a kernel panic. This issue arises because the response pointer length is incorrectly calculated, potentially allowing for stack corruption. The vulnerability has been observed in a Dell PowerEdge R760 server running Linux kernel 6.11.0.

Impact

Exploitation of this vulnerability causes a kernel panic, indicating a severe stack corruption issue that disrupts normal kernel operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Stack Corruption Vulnerability in Ethtool CMIS CDB Module

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating