CVE-2025-38275 | Linux Kernel prior 6.1.142/6.6.94/6.12.34/6.15.3/6.16-rc1 phy null pointer dereference (Nessus ID 265934 / WID-SEC-2025-1522)
A vulnerability labeled as critical has been found in Linux Kernel up to 6.1.141/6.6.93/6.12.33/6.15.2/368ea32e0ad0335bdf3180067875a928e35387c6. Impacted is an unknown function of the component phy. Executing manipulation can lead to null pointer dereference.
This vulnerability is tracked as CVE-2025-38275. The attack is only possible within the local network. No exploit exists.
The affected component should be upgraded.