CVE-2025-5688
- EPSS 0.03%
- Published 04.06.2025 17:15:29
- Last modified 05.06.2025 20:12:23
We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrad...
CVE-2024-28115
- EPSS 0.04%
- Published 07.03.2024 21:15:08
- Last modified 21.11.2024 09:05:50
FreeRTOS is a real-time operating system for microcontrollers. FreeRTOS Kernel versions through 10.6.1 do not sufficiently protect against local privilege escalation via Return Oriented Programming techniques should a vulnerability exist that allows ...
CVE-2021-27504
- EPSS 0.12%
- Published 21.11.2023 18:15:07
- Last modified 21.11.2024 05:58:07
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.
CVE-2021-43997
- EPSS 0.13%
- Published 17.11.2021 21:15:07
- Last modified 21.11.2024 06:30:10
FreeRTOS versions 10.2.0 through 10.4.5 do not prevent non-kernel code from calling the xPortRaisePrivilege internal function to raise privilege. FreeRTOS versions through 10.4.6 do not prevent a third party that has already independently gained the ...
CVE-2021-32020
- EPSS 0.3%
- Published 03.05.2021 22:15:08
- Last modified 21.11.2024 06:06:43
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory.
CVE-2021-31571
- EPSS 0.55%
- Published 22.04.2021 18:15:08
- Last modified 21.11.2024 06:05:55
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for queue creation.
CVE-2021-31572
- EPSS 0.55%
- Published 22.04.2021 18:15:08
- Last modified 21.11.2024 06:05:55
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in stream_buffer.c for a stream buffer.