CVE-2025-2073

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-2073
Out-of-Bounds Read in netfilter/ipset in Linux Kernel ChromeOS [6.1, 5.15, 5.10, 5.4, 4.19] allows a local attacker with low privileges to trigger an out-of-bounds read, potentially leading to information disclosure

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://issues.chromium.org/issues/b/380043638
https://issuetracker.google.com/issues/380043638
Configurations

No configuration.

History

06 May 2025, 01:15

Type Values Removed Values Added
Summary
  • (es) La lectura fuera de los límites en ip_set_bitmap_ip.c en las versiones del kernel de Google ChromeOS 6.1, 5.15, 5.10, 5.4, 4.19 en todos los dispositivos donde se utiliza Termina permite que un atacante con privilegios CAP_NET_ADMIN provoque corrupción de memoria y potencialmente escale privilegios a través de comandos ipset manipulados.
Summary (en) Out-of-Bounds Read in ip_set_bitmap_ip.c in Google ChromeOS Kernel Versions 6.1, 5.15, 5.10, 5.4, 4.19. on All devices where Termina is used allows an attacker with CAP_NET_ADMIN privileges to cause memory corruption and potentially escalate privileges via crafted ipset commands. (en) Out-of-Bounds Read in netfilter/ipset in Linux Kernel ChromeOS [6.1, 5.15, 5.10, 5.4, 4.19] allows a local attacker with low privileges to trigger an out-of-bounds read, potentially leading to information disclosure

17 Apr 2025, 16:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 9.1 		v2 : unknown
v3 : 8.8

17 Apr 2025, 14:15

Type Values Removed Values Added
CWE CWE-125
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 9.1

16 Apr 2025, 23:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-04-16 23:15

Updated : 2025-05-06 01:15

NVD link : CVE-2025-2073

Mitre link : CVE-2025-2073

CVE.ORG link : CVE-2025-2073

JSON object : View

Products Affected

No product.

CWE
CWE-125

Out-of-bounds Read