CVE-2025-71307

Name: CVE-2025-71307 — Vulnerability Record
Brand: Quanteta Data Lab
SKU: CVE-2025-71307

MEDIUM

CVSS v3.1: 5.5 · EPSS: 0.0019 (8.7 percentile)

No user interactionNULL Pointer Deref

Source data as of: 2026-06-26 05:02:17 UTC

At a glance

Severity: MEDIUM
CVSS: 5.5 v3.1 · NVD
EPSS: 0.0019 (8.7 percentile) · FIRST.org
CISA KEV: No
Type: NULL Pointer Deref · NVD CWE
Attack conditions (CVSS vector): No user interaction · Source: NVD Vector
Affected vendors: linux
Published: 2026-05-27 · Modified: 2026-06-25
References: Jump to references (2)

CVSS / EPSS / KEV

CVSS v3.1 5.5 / 10 MEDIUM Source: NVD

EPSS 0.0019 8.7 percentile Source: FIRST.org

CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix NULL pointer dereference on panthor_fw_unplug This patch removes the MCU halt and wait for halt procedures during panthor_fw_unplug() as the MCU can be in a variety of states or the FW may not even be loaded/initialized at all, the latter of which can lead to a NULL pointer dereference. It should be safe on unplug to just disable the MCU without waiting for it to halt as it may not be able to.

Record details

CVE ID: CVE-2025-71307
CVSS (v3.1): 5.5 (MEDIUM)
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability subscore: 1.8
Impact subscore: 3.6
EPSS: 0.0019 (8.7 percentile) — 2026-06-26
CISA KEV: No
Weakness (CWE): CWE-476
Affected vendors: linux
Affected configurations (CPE): 1
Published: 2026-05-27
Modified: 2026-06-25
Status: Analyzed

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

← Back to all records

CVE-2025-71307

At a glance

CVSS / EPSS / KEV

Description

Record details

References

Related records

Same affected vendor

Same weakness type (CWE)

Published the same year