CVE-2025-38728 Cert Portal CVE debrief

Who should care

Operators and administrators responsible for Siemens SIMATIC CN 4100 deployments, especially systems that rely on SMB3/CIFS mount paths and ksmbd-related kernel code. Linux platform teams that build, ship, or maintain affected kernels should also review their update posture, even if the immediate advisory is framed for an OT product.

Technical summary

The advisory describes a missing bounds check in parse_server_interfaces() in the Linux kernel cifs/SMB3 code path. With KASAN enabled, a mount to ksmbd can reach a slab out-of-bounds read in parse_server_interfaces(), which in the supplied report occurs during SMB3_request_interfaces() and the mount flow. The reported CVSS vector is AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating a local, low-privilege condition with high availability impact.

Defensive priority

Medium

Recommended defensive actions

• Update affected Siemens SIMATIC CN 4100 systems to V5.0 or later, per the vendor remediation guidance.
• Validate whether your environment uses SMB3/CIFS mount paths or ksmbd-related functionality that could exercise the affected code path.
• Prioritize patching in maintenance windows for exposed OT assets, since the advisory indicates availability impact.
• Review asset inventories and confirm which deployed versions fall below the fixed release threshold.
• Monitor Siemens and CISA advisory updates for any revision history or follow-on guidance.

Evidence notes

The supplied source corpus is a CISA CSAF advisory republising Siemens ProductCERT SSA-032379 for CVE-2025-38728, published 2026-05-12 and republished 2026-05-14. The corpus states the issue is a Linux kernel smb3 fix for a slab out-of-bounds condition in parse_server_interfaces(), and the remediation is to update to V5.0 or later. The enrichment marks the issue as not known to be in CISA KEV.

Official resources