Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2025-39720
CVE-2025-39720:
CBL Mariner vulnerability analysis and mitigation
Overview
In the Linux kernel, a vulnerability (CVE-2025-39720) was discovered related to the ksmbd component. The issue was identified and disclosed on September 5, 2025, affecting the Linux kernel's implementation of the SMB server. The vulnerability involves a refcount leak in the ksmbd component that occurs when ksmbdconnreleasing(opinfo->conn) returns true (NVD).
Technical details
The vulnerability stems from a refcount leak where the refcount is not decremented properly when ksmbdconnreleasing(opinfo->conn) returns true. This improper handling prevents the count from reaching zero, consequently preventing the memory from being released. The vulnerability has been assigned a CVSS v3.1 base score of 5.5, indicating moderate severity (Rapid7).
Impact
The primary impact of this vulnerability is a resource leak in the system. When exploited, it prevents proper memory release, which could lead to resource exhaustion over time. This could potentially affect system stability and performance (NVD).
Additional resources
Source: This report was generated using AI
Related CBL Mariner vulnerabilities:
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management