CVE-2025-21690

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 10, 2025

Updated: Feb 21, 2025

CWE ID 770

Summary

CVE-2025-21690 is a vulnerability in the Linux kernel that affects the SCSI subsystem. This issue allows persistent errors in the hypervisor to result in an excessive number of SCSI warning logs, which can max out CPU utilization and hinder troubleshooting from the VM side. To prevent this Denial of Service (DoS) condition, the vulnerability has been addressed by implementing a ratelimit on the SCSI warning logs.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3OfsUS
https://www.cve.org/CVERecord?id=CVE-2025-21690
https://nvd.nist.gov/vuln/detail/CVE-2025-21690

Back to Vulnerability Database

CVE-2025-21690

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations