405 Linux Kernel CVEs in July 2025
Full month · Source: NIST NVD
In July 2025, 405 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 121 were rated High severity and 283 Medium. CVE-2025-38352 was confirmed as actively exploited in the wild and added to the CISA Known Exploited Vulnerabilities catalog. July's 405 CVEs represent 7% of all 2025 Linux kernel CVEs , up from June's 375 (a 8% month-over-month increase) .
Actively Exploited CVEs — July 2025
1 CVE in CISA KEVCVE-2025-38352 is the only Linux kernel CVE from July 2025 confirmed as actively exploited in the wild. It carries a CVSS score of 7.4 (High severity) and is listed in the CISA Known Exploited Vulnerabilities catalog.
| CVE ID | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|
| CVE-2025-38352 | High KEV | 7.4 | 2025-07-22 | In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: fix race betw… |
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2025-46733 | linux | High | 7.9 | 2025-07-04 | OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cort… | |
| CVE-2025-38471 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock Aft… | |
| CVE-2025-38476 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpl_do_srh_inline(). Run… | |
| CVE-2025-38488 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message wh… | |
| CVE-2025-38494 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_… | |
| CVE-2025-38485 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: iio: accel: fxls8962af: Fix use after free in fxls8… | |
| CVE-2025-38490 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: net: libwx: remove duplicate page_pool_put_full_pag… | |
| CVE-2025-38484 | linux | High | 7.8 | 2025-07-28 | In the Linux kernel, the following vulnerability has been resolved: iio: backend: fix out-of-bound write The buffer is … | |
| CVE-2025-38415 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: Squashfs: check return result of sb_min_blocksize S… | |
| CVE-2025-38375 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exc… | |
| CVE-2025-38378 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix slab use-after-free bug in ap… | |
| CVE-2025-38366 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Check validity of "num_cpu" from us… | |
| CVE-2025-38377 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: rose: fix dangling neighbour pointers in rose_rt_de… | |
| CVE-2025-38403 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: Clear the vmci transport packet properl… | |
| CVE-2025-38421 | linux | High | 7.8 | 2025-07-25 | In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmf: Use device managed allocatio… |