Linux Kernel CVE Statistics
550 Linux Kernel CVEs in May 2025
Full month · Source: NIST NVD
In May 2025, 550 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 127 were rated High severity and 423 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. May's 550 CVEs represent 10% of all 2025 Linux kernel CVEs , up from April's 281 (a 96% month-over-month increase) .
550
Total CVEs
0
Critical
127
High
423
Medium
0
Low
0
KEV Exploited
All CVEs — May 2025
550 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2025-37952 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix UAF in __close_file_table_ids A use-afte… | |
| CVE-2025-37899 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in session logoff The ses… | |
| CVE-2025-37926 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_session_rpc_open… | |
| CVE-2025-37946 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix duplicate pci_dev_put() in disable_sl… | |
| CVE-2025-37892 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: mtd: inftlcore: Add error check for inftl_read_oob(… | |
| CVE-2025-37957 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Forcibly leave SMM mode on SHUTDOWN inter… | |
| CVE-2025-37921 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fix unlocked deletion of default … | |
| CVE-2025-37923 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: tracing: Fix oob write in trace_seq_to_buffer() syz… | |
| CVE-2025-37928 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: dm-bufio: don't schedule in atomic context A BUG wa… | |
| CVE-2025-37934 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: ASoC: simple-card-utils: Fix pointer check in graph… | |
| CVE-2025-37908 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: mm, slab: clean up slab->obj_exts always When memor… | |
| CVE-2025-37916 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: pds_core: remove write-after-free of client_id A us… | |
| CVE-2025-37913 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: net_sched: qfq: Fix double list add in class with n… | |
| CVE-2025-37914 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: net_sched: ets: Fix double list add in class with n… | |
| CVE-2025-37903 | linux | High | 7.8 | 2025-05-20 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix slab-use-after-free in hdcp Th… |