CVE-2025-40342

nvme-fc: use lock accessing port_state and rport state

Severity Score

7.8

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing port_state and rport state nvme_fc_unregister_remote removes the remote port on a lport object at
any point in time when there is no active association. This races with
with the reconnect logic, because nvme_fc_create_association is not
taking a lock to check the port_state and atomically increase the
active count on the rport.

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing port_state and rport state nvme_fc_unregister_remote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because nvme_fc_create_association is not taking a lock to check the port_state and atomically increase the active count on the rport.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-04-16 CVE Reserved
2025-12-09 CVE Published
2025-12-09 CVE Updated
2025-12-09 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/de3d91af47bc015031e7721b100a29989f6498a5	2025-12-06
https://git.kernel.org/stable/c/e8cde03de8674b05f2c5e0870729049eba517800	2025-12-06
https://git.kernel.org/stable/c/4253e0a4546138a2bf9cb6acf66b32fee677fc7c	2025-12-06
https://git.kernel.org/stable/c/25f4bf1f7979a7871974fd36c79d69ff1cf4b446	2025-11-24
https://git.kernel.org/stable/c/9950af4303942081dc8c7a5fdc3688c17c7eb6c0	2025-11-13
https://git.kernel.org/stable/c/a2f7fa75c4a2a07328fa22ccbef461db76790b55	2025-11-13
https://git.kernel.org/stable/c/891cdbb162ccdb079cd5228ae43bdeebce8597ad	2025-09-15

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.10.247 Search vendor "Linux" for product "Linux Kernel" and version " < 5.10.247"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.15.197 Search vendor "Linux" for product "Linux Kernel" and version " < 5.15.197"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.1.159 Search vendor "Linux" for product "Linux Kernel" and version " < 6.1.159"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.6.117 Search vendor "Linux" for product "Linux Kernel" and version " < 6.6.117"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.12.58 Search vendor "Linux" for product "Linux Kernel" and version " < 6.12.58"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.17.8 Search vendor "Linux" for product "Linux Kernel" and version " < 6.17.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.18 Search vendor "Linux" for product "Linux Kernel" and version " < 6.18"		en		Affected