Linux Kernel CVE Statistics
281 Linux Kernel CVEs in April 2025
Full month · Source: NIST NVD
In April 2025, 281 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 66 were rated High severity and 214 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. April's 281 CVEs represent 5% of all 2025 Linux kernel CVEs , up from March's 208 (a 35% month-over-month increase) .
281
Total CVEs
0
Critical
66
High
214
Medium
1
Low
0
KEV Exploited
All CVEs — April 2025
281 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2025-22040 | linux | High | 8.8 | 2025-04-16 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix session use-after-free in multichannel c… | |
| CVE-2025-22041 | linux | High | 8.8 | 2025-04-16 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_sessions_deregis… | |
| CVE-2025-2073 | linux | High | 8.8 | 2025-04-16 | Out-of-Bounds Read in netfilter/ipset in Linux Kernel ChromeOS [6.1, 5.15, 5.10, 5.4, 4.19] allows a local attacker wit… | |
| CVE-2025-40114 | linux | High | 7.8 | 2025-04-18 | In the Linux kernel, the following vulnerability has been resolved: iio: light: Add check for array bounds in veml6075_… | |
| CVE-2025-37838 | linux | High | 7.8 | 2025-04-18 | In the Linux kernel, the following vulnerability has been resolved: HSI: ssi_protocol: Fix use after free vulnerability… | |
| CVE-2025-40364 | linux | High | 7.8 | 2025-04-18 | In the Linux kernel, the following vulnerability has been resolved: io_uring: fix io_req_prep_async with provided buffe… | |
| CVE-2025-40014 | linux | High | 7.8 | 2025-04-18 | In the Linux kernel, the following vulnerability has been resolved: objtool, spi: amd: Fix out-of-bounds stack access i… | |
| CVE-2025-38479 | linux | High | 7.8 | 2025-04-18 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: free irq correctly in remove p… | |
| CVE-2021-47669 | linux | High | 7.8 | 2025-04-17 | In the Linux kernel, the following vulnerability has been resolved: can: vxcan: vxcan_xmit: fix use after free bug Afte… | |
| CVE-2021-47668 | linux | High | 7.8 | 2025-04-17 | In the Linux kernel, the following vulnerability has been resolved: can: dev: can_restart: fix use after free bug After… | |
| CVE-2021-47670 | linux | High | 7.8 | 2025-04-17 | In the Linux kernel, the following vulnerability has been resolved: can: peak_usb: fix use after free bugs After callin… | |
| CVE-2025-22035 | linux | High | 7.8 | 2025-04-16 | In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free in print_graph_function… | |
| CVE-2024-58093 | linux | High | 7.8 | 2025-04-16 | In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstrea… | |
| CVE-2025-22088 | linux | High | 7.8 | 2025-04-16 | In the Linux kernel, the following vulnerability has been resolved: RDMA/erdma: Prevent use-after-free in erdma_accept_… | |
| CVE-2025-23133 | linux | High | 7.8 | 2025-04-16 | In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: update channel list in reg notifier i… |