CVE-2025-1272

🗓️ 18 Feb 2026 20:29:15Reported by fedoraType

Fedora Linux kernel lockdown not auto-enabled on 6.12+, risking unsigned modules and exposure of memory mappings and probes.

Reporter	Title	Published	Views	Family All 32
Tenable Nessus	CentOS 9 : kernel-5.14.0-573.el9	24 Mar 202500:00	–	nessus
Tenable Nessus	Fedora 40 : kernel (2025-b268fceaec)	20 Feb 202500:00	–	nessus
Tenable Nessus	Fedora 41 : kernel (2025-cca2fcc70c)	20 Feb 202500:00	–	nessus
Tenable Nessus	MiracleLinux 9 : kernel-5.14.0-570.12.1.el9_6 (AXSA:2025-10392:38)	13 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 9 : kernel (ELSA-2025-6966)	22 May 202500:00	–	nessus
Tenable Nessus	RHEL 9 : kernel (RHSA-2025:6966)	27 May 202500:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2025-1272	10 Aug 202500:00	–	nessus
Circl	CVE-2025-1272	20 Feb 202504:08	–	circl
CNNVD	Red Hat Enterprise Linux 安全漏洞	18 Feb 202600:00	–	cnnvd
Cvelist	CVE-2025-1272 Kernel: secure boot does not automatically enable kernel lockdown	18 Feb 202620:29	–	cvelist

[
  {
    "collectionURL": "https://packages.fedoraproject.org/pkgs/kernel/kernel/",
    "defaultStatus": "unaffected",
    "packageName": "kernel",
    "vendor": "Fedora Project",
    "product": "Fedora Linux",
    "versions": [
      {
        "lessThan": "6.12.15-100.fc40",
        "status": "affected",
        "version": "6.12.4-100.fc40",
        "versionType": "rpm"
      },
      {
        "lessThan": "6.12.15-200.fc41",
        "status": "affected",
        "version": "6.12.1-200.fc41",
        "versionType": "rpm"
      }
    ]
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/o:redhat:enterprise_linux:9::baseos",
      "cpe:/a:redhat:enterprise_linux:9::realtime",
      "cpe:/a:redhat:enterprise_linux:9::crb",
      "cpe:/a:redhat:enterprise_linux:9::nfv"
    ],
    "defaultStatus": "affected",
    "packageName": "kernel",
    "product": "Red Hat Enterprise Linux 9",
    "vendor": "Red Hat",
    "versions": [
      {
        "lessThan": "*",
        "status": "unaffected",
        "version": "0:5.14.0-570.12.1.el9_6",
        "versionType": "rpm"
      }
    ]
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/o:redhat:enterprise_linux:9::baseos",
      "cpe:/a:redhat:enterprise_linux:9::realtime",
      "cpe:/a:redhat:enterprise_linux:9::crb",
      "cpe:/a:redhat:enterprise_linux:9::nfv"
    ],
    "defaultStatus": "affected",
    "packageName": "kernel",
    "product": "Red Hat Enterprise Linux 9",
    "vendor": "Red Hat",
    "versions": [
      {
        "lessThan": "*",
        "status": "unaffected",
        "version": "0:5.14.0-570.12.1.el9_6",
        "versionType": "rpm"
      }
    ]
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ],
    "defaultStatus": "unaffected",
    "packageName": "kernel",
    "product": "Red Hat Enterprise Linux 10",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ],
    "defaultStatus": "unaffected",
    "packageName": "kernel",
    "product": "Red Hat Enterprise Linux 6",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ],
    "defaultStatus": "unaffected",
    "packageName": "kernel",
    "product": "Red Hat Enterprise Linux 7",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ],
    "defaultStatus": "unaffected",
    "packageName": "kernel-rt",
    "product": "Red Hat Enterprise Linux 7",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ],
    "defaultStatus": "unaffected",
    "packageName": "kernel",
    "product": "Red Hat Enterprise Linux 8",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ],
    "defaultStatus": "unaffected",
    "packageName": "kernel-rt",
    "product": "Red Hat Enterprise Linux 8",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ],
    "defaultStatus": "affected",
    "packageName": "kernel-rt",
    "product": "Red Hat Enterprise Linux 9",
    "vendor": "Red Hat"
  },
  {
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ],
    "defaultStatus": "unaffected",
    "packageName": "rhcos",
    "product": "Red Hat OpenShift Container Platform 4",
    "vendor": "Red Hat"
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2025-1272
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/errata/RHSA-2025:6966

15 Apr 2026 00:35Current

7.8High risk

Vulners AI Score7.8

CVSS 3.17.7

EPSS0.00231

CWE-306