CVE-2025-38171 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

power: supply: max77705: Fix workqueue error handling in probe

The create_singlethread_workqueue() doesn't return error pointers, it
returns NULL. Also cleanup the workqueue on the error paths.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00027.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux	Linux Kernel

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/11741b8e382d34b13277497ab91123d8b0b5c2db
https://git.kernel.org/stable/c/7f16be2b2927fdcfe40b596b7411c46d23a82034
https://lore.kernel.org/linux-cve-announce/2025070342-CVE-2025-38171-a380@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2025-38171
https://www.cve.org/CVERecord?id=CVE-2025-38171

History

Fri, 04 Jul 2025 00:30:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025070342-CVE-2025-38171-a380@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2025-38171 https://www.cve.org/CVERecord?id=CVE-2025-38171
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Thu, 03 Jul 2025 09:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Fix workqueue error handling in probe The create_singlethread_workqueue() doesn't return error pointers, it returns NULL. Also cleanup the workqueue on the error paths.
Title		power: supply: max77705: Fix workqueue error handling in probe
References		https://git.kernel.org/stable/c/11741b8e382d34b13277497ab91123d8b0b5c2db https://git.kernel.org/stable/c/7f16be2b2927fdcfe40b596b7411c46d23a82034

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-07-03T08:36:09.651Z

Updated: 2025-07-28T04:14:12.480Z

Reserved: 2025-04-16T04:51:23.991Z

Link: CVE-2025-38171

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-07-03T09:15:32.787

Modified: 2025-07-03T15:13:53.147

Link: CVE-2025-38171

Redhat

Severity : Moderate

Publid Date: 2025-07-03T00:00:00Z

Links: CVE-2025-38171 - Bugzilla

OpenCVE Enrichment

Updated: 2025-07-06T22:16:21Z

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object