CVE-2025-39786 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-39786 PUBLISHED CVSS 7.099999904632568 HIGH

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7173: fix channels index for syscalib_mode Fix the index used to look up the channel when accessing the syscalib_mode attribute. The address field is a 0-based index (same as scan_index) that it used to access the channel in the ad7173_channels array throughout the driver. The channels field, on the other hand, may not match the address field depending on the channel configuration specified in the device tree and could result in an out-of-bounds access.

EPSS 0.02% · 4.7th percentile

Risk Scores

CVSS v3.1

7.099999904632568

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS Score

0.02%

4.7th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	031bdc8aee01b7b298159eee541844d8bff4467d, 031bdc8aee01b7b298159eee541844d8bff4467d, 6.14
linux	linux_kernel	6.14, 6.14, 6.14

Timeline

Sep 11, 2025 CVE Published
Sep 12, 2025 EPSS Score
Sep 19, 2025 EPSS Score
Sep 25, 2025 EPSS Score
Oct 2, 2025 EPSS Score
Oct 9, 2025 EPSS Score
Oct 15, 2025 EPSS Score
Oct 22, 2025 EPSS Score
Oct 29, 2025 EPSS Score
Nov 5, 2025 EPSS Score
Nov 11, 2025 EPSS Score
Nov 18, 2025 EPSS Score

References

Open in Interactive Console →