VYPR

Incubator Nuttx

by Apache

Source repositories

CVEs (2)

  • CVE-2025-48769Jan 1, 2026
    risk 0.00cvss epss 0.02

    Use After Free vulnerability was discovered in fs/vfs/fs_rename code of the Apache NuttX RTOS, that due recursive implementation and single buffer use by two different pointer variables allowed arbitrary user provided size buffer reallocation and write to the previously freed…

  • CVE-2025-48768Jan 1, 2026
    risk 0.00cvss epss 0.01

    Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fs_inoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger (that is disabled by default), NULL pointer dereference (handled…