Main Vulnerability Database Exploits ID:11338 - Exploit for Use-after-free in Linux kernel - CVE-2025-21756

ID:11338 - Exploit for Use-after-free in Linux kernel - CVE-2025-21756

Published: April 25, 2025

Vulnerability identifier: #VU104945

Vulnerability risk: Low

CVE-ID: CVE-2025-21756

CWE-ID: CWE-416

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://github.com/hoefler02/CVE-2025-21756

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the EXPORT_SYMBOL_GPL() and __vsock_release() functions in net/vmw_vsock/af_vsock.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

ID:11338 - Exploit for Use-after-free in Linux kernel - CVE-2025-21756

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human