CVE-2025-11618
- EPSS 0.04%
- Veröffentlicht 10.10.2025 17:10:34
- Zuletzt bearbeitet 31.10.2025 18:23:01
A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 packet processing code can lead to an invalid pointer dereference when receiving a UDP/IPv6 packet with an incorrect IP version field in the packet header. This issue only affects application...
CVE-2025-11617
- EPSS 0.05%
- Veröffentlicht 10.10.2025 17:10:30
- Zuletzt bearbeitet 31.10.2025 18:22:57
A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6 packet with incorrect payload lengths in the packet header. This issue only affects applications using IPv6. We rec...
CVE-2025-11616
- EPSS 0.05%
- Veröffentlicht 10.10.2025 17:10:27
- Zuletzt bearbeitet 31.10.2025 18:22:59
A missing validation check in FreeRTOS-Plus-TCP's ICMPv6 packet processing code can lead to an out-of-bounds read when receiving ICMPv6 packets of certain message types which are smaller than the expected size. These issues only affect applications u...
CVE-2024-38373
- EPSS 0.65%
- Veröffentlicht 24.06.2024 17:15:10
- Zuletzt bearbeitet 21.11.2024 09:25:31
FreeRTOS-Plus-TCP is a lightweight TCP/IP stack for FreeRTOS. FreeRTOS-Plus-TCP versions 4.0.0 through 4.1.0 contain a buffer over-read issue in the DNS Response Parser when parsing domain names in a DNS response. A carefully crafted DNS response wit...