CVE-2025-71223

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A reference count leak exists in the smb2 open() function within the ksmbd server component of the Linux kernel. This occurs when the ksmbd vfs getattr() function fails, and the reference count of the ksmbd file object is not released.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-71223

ECHO-B32D-DB85-7EC1

OESA-2026-1566

OESA-2026-1567

OESA-2026-1570

Affected Products

Linux Kernel

CVE-2025-71223

Related Identifiers

Affected Products

References · 99