CVE-2025-38448 | Linux Kernel up to 6.16-rc4 usb gs_start_io race condition (EUVD-2025-22693 / Nessus ID 265984)
A vulnerability described as problematic has been identified in Linux Kernel up to 6.16-rc4. The impacted element is the function gs_start_io of the component usb. The manipulation results in race condition.
This vulnerability is reported as CVE-2025-38448. The attacker must have access to the local network to execute the attack. No exploit exists.
Upgrading the affected component is recommended.