VYPR

NuttX RTOS

by Apache

Source repositories

CVEs (4)

  • CVE-2025-47869CriJun 16, 2025
    risk 0.57cvss 9.8epss 0.01

    Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability was discovered in Apache NuttX RTOS apps/exapmles/xmlrpc application. In this example application device stats structure that stored remotely provided parameters had hardcoded buffer size which…

  • CVE-2025-47868CriJun 16, 2025
    risk 0.57cvss 9.8epss 0.01

    Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications…

  • CVE-2025-35003CriMay 26, 2025
    risk 0.57cvss 9.8epss 0.01

    Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack (HCI and UART components) that may result in system crash, denial of service, or arbitrary code execution,…

  • CVE-2025-48769Jan 1, 2026
    risk 0.00cvss epss 0.02

    Use After Free vulnerability was discovered in fs/vfs/fs_rename code of the Apache NuttX RTOS, that due recursive implementation and single buffer use by two different pointer variables allowed arbitrary user provided size buffer reallocation and write to the previously freed…