AZL-75249 CVE-2025-38494 affecting package kernel for versions less than 5.15.200.1-1

🗓️ 28 Jul 2025 12:15:31Reported by GoogleType

osv

osv🔗 osv.dev👁 9 Views

AZL-75249 CVE-2025-38494: Linux kernel HID fix prevents hid_hw_raw_request bypass for invalid buffers.

Reporter	Title	Published	Views	Family All 519
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-1144)	9 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2025-1145)	9 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-104 (ALASKERNEL-5.10-2025-104)	16 Sep 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-089 (ALASKERNEL-5.15-2025-089)	16 Sep 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-109 (ALASKERNEL-5.4-2025-109)	16 Sep 202500:00	–	nessus
Tenable Nessus	Debian dla-4327 : ata-modules-5.10.0-35-armmp-di - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dsa-5973 : affs-modules-6.1.0-37-4kc-malta-di - security update	13 Aug 202500:00	–	nessus
Tenable Nessus	Debian dsa-5975 : ata-modules-6.12.31-armmp-di - security update	8 Dec 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : kernel (EulerOS-SA-2025-2390)	12 Nov 202500:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-38494

21 Apr 2026 04:38Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.17.8

EPSS0.00192

AZL-75249 CVE-2025-38494 Linux kernel HID core hid_hw_raw_request invalid buffers older kernels