CVE-2025-21700

Summary

CVE-2025-21700: A vulnerability in the Linux kernel net scheduling subsystem has been addressed. A user, Lion Ackermann, discovered a Use-After-Free (UAF) issue that could be exploited for privilege escalation. The exploit involved creating and manipulating qdiscs (queueing disciplines) and their parents. The vulnerability was due to the misuse of the "replace" command, which was intended for actions on the same node but was being used to delete a qdisc from one node and add it to another. To prevent such exploits, the patch disallows the replacement of a child qdisc from one parent to another.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.