Wiz
Vulnerability DatabaseCVE-2025-39692

CVE-2025-39692
CBL Mariner vulnerability analysis and mitigation

Overview

CVE-2025-39692 affects the Linux kernel and involves a vulnerability in the SMB server component. The issue was disclosed on September 5, 2025, and relates to improper handling of RDMA workqueue cleanup in the ksmbd module (NVD).

Technical details

The vulnerability stems from an incorrect sequence of operations in the SMB server's RDMA handling, specifically where destroyworkqueue(smbdirectwq) is called before stopsessions(). This timing issue results in existing connections attempting to use smbdirectwq after it has been destroyed, leading to NULL pointer dereferencing. The vulnerability has been assigned a CVSS v3 base score of 5.5, indicating moderate severity (AttackerKB).

Impact

When exploited, this vulnerability can cause existing SMB connections to attempt accessing a NULL pointer, potentially leading to system crashes or denial of service conditions. The impact is primarily focused on systems running the Linux kernel with the ksmbd RDMA functionality enabled (Rapid7).

Mitigation and workarounds

The vulnerability has been resolved by splitting the ksmbdrdmastoplistening() function out of ksmbdrdma_destroy(), ensuring proper sequencing of operations during the cleanup process. System administrators should apply the latest kernel updates that include this fix (NVD).

Additional resources

SourceThis report was generated using AI

Related CBL Mariner vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-66031HIGH8.7
  • JavaScriptJavaScript
  • kibana-8.17
NoYesNov 26, 2025
CVE-2025-12638HIGH8
  • CBL MarinerCBL Mariner
  • keras
NoYesNov 28, 2025
CVE-2025-13601HIGH7.7
  • CBL MarinerCBL Mariner
  • glib2
NoYesNov 26, 2025
CVE-2025-66293HIGH7.1
  • OpenJDK JDKOpenJDK JDK
  • java-21-openjdk-headless-slowdebug
NoYesDec 03, 2025
CVE-2025-66030MEDIUM6.3
  • JavaScriptJavaScript
  • kibana-8.18
NoYesNov 26, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo