{"vulnerability": "CVE-2025-37789", "sightings": [{"uuid": "bbaf5316-c99c-47e6-b300-b093e0d86a4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-37789", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14454", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-37789\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: fix nested key length validation in the set() action\n\nIt's not safe to access nla_len(ovs_key) if the data is smaller than\nthe netlink header.  Check that the attribute is OK first.\n\ud83d\udccf Published: 2025-05-01T13:07:22.809Z\n\ud83d\udccf Modified: 2025-05-02T06:16:29.055Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/54c6957d1123a2032099b9eab51c314800f677ce\n2. https://git.kernel.org/stable/c/7fcaec0b2ab8fa5fbf0b45e5512364a168f445bd\n3. https://git.kernel.org/stable/c/a27526e6b48eee9e2d82efff502c4f272f1a91d4\n4. https://git.kernel.org/stable/c/1489c195c8eecd262aa6712761ba5288203e28ec\n5. https://git.kernel.org/stable/c/824a7c2df5127b2402b68a21a265d413e78dcad7\n6. https://git.kernel.org/stable/c/be80768d4f3b6fd13f421451cc3fee8778aba8bc\n7. https://git.kernel.org/stable/c/03d7262dd53e8c404da35cc81aaa887fd901f76b\n8. https://git.kernel.org/stable/c/65d91192aa66f05710cfddf6a14b5a25ee554dba", "creation_timestamp": "2025-05-02T07:16:23.000000Z"}]}