Description

In the Linux kernel, the following vulnerability has been resolved: usb: net: sierra: check for no status endpoint The driver checks for having three endpoints and having bulk in and out endpoints, but not that the third endpoint is interrupt input. Rectify the omission.

INFO

Published Date :

2025-07-28T11:21:35.570Z

Last Modified :

2025-11-03T17:38:40.975Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38474 vulnerability.

Vendors Products
Debian
  • Debian Linux
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38474.

URL Resource
https://git.kernel.org/stable/c/0a263ccb905b4ae2af381cd4280bd8d2477b98b8 cve-icon cve-icon
https://git.kernel.org/stable/c/4c4ca3c46167518f8534ed70f6e3b4bf86c4d158 cve-icon cve-icon
https://git.kernel.org/stable/c/5408cc668e596c81cdd29e137225432aa40d1785 cve-icon cve-icon
https://git.kernel.org/stable/c/5849980faea1c792d1d5e54fdbf1e69ac0a9bfb9 cve-icon cve-icon
https://git.kernel.org/stable/c/5dd6a441748dad2f02e27b256984ca0b2d4546b6 cve-icon cve-icon
https://git.kernel.org/stable/c/65c666aff44eb7f9079c55331abd9687fb77ba2d cve-icon cve-icon
https://git.kernel.org/stable/c/a6a238c4126eb3ddb495d3f960193ca5bb778d92 cve-icon cve-icon
https://git.kernel.org/stable/c/bfe8ef373986e8f185d3d6613eb1801a8749837a cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025072812-CVE-2025-38474-0663@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38474 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38474 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact