RT-Thread
by RT-Thread
CVEs (17)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-25393 | Cri | 0.64 | 9.8 | 0.01 | Mar 27, 2024 | A stack buffer overflow occurs in net/at/src/at_server.c in RT-Thread through 5.0.2. | ||
| CVE-2024-25395 | Hig | 0.57 | 8.8 | 0.01 | Mar 27, 2024 | A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2. | ||
| CVE-2024-25391 | Hig | 0.55 | 8.4 | 0.00 | Mar 27, 2024 | A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2. | ||
| CVE-2024-25390 | Hig | 0.55 | 8.4 | 0.00 | Mar 27, 2024 | A heap buffer overflow occurs in finsh/msh_file.c and finsh/msh.c in RT-Thread through 5.0.2. | ||
| CVE-2024-25388 | Hig | 0.55 | 8.4 | 0.00 | Mar 27, 2024 | drivers/wlan/wlan_mgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow. | ||
| CVE-2025-5869 | Hig | 0.52 | 8.0 | 0.01 | Jun 9, 2025 | A vulnerability, which was classified as critical, was found in RT-Thread 5.1.0. Affected is the function sys_recvfrom of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument from leads to memory corruption. | ||
| CVE-2025-5868 | Hig | 0.52 | 8.0 | 0.01 | Jun 9, 2025 | A vulnerability, which was classified as critical, has been found in RT-Thread 5.1.0. This issue affects the function sys_thread_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index. | ||
| CVE-2025-5867 | Hig | 0.52 | 8.0 | 0.01 | Jun 9, 2025 | A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects the function csys_sendto of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument to leads to null pointer dereference. | ||
| CVE-2025-5866 | Hig | 0.52 | 8.0 | 0.01 | Jun 9, 2025 | A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function sys_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index. | ||
| CVE-2025-5865 | Hig | 0.52 | 8.0 | 0.01 | Jun 9, 2025 | A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The manipulation of the argument timeout leads to memory… | ||
| CVE-2025-6693 | Hig | 0.51 | 7.8 | 0.00 | Jun 26, 2025 | A vulnerability, which was classified as critical, was found in RT-Thread up to 5.1.0. This affects the function sys_device_open/sys_device_read/sys_device_control/sys_device_init/sys_device_close/sys_device_write of the file components/drivers/core/device.c. The manipulation… | ||
| CVE-2024-25389 | Hig | 0.49 | 7.5 | 0.01 | Mar 27, 2024 | RT-Thread through 5.0.2 generates random numbers with a weak algorithm of "seed = 214013L * seed + 2531011L; return (seed >> 16) & 0x7FFF;" in calc_random in drivers/misc/rt_random.c. | ||
| CVE-2024-25392 | Med | 0.38 | 5.9 | 0.00 | Mar 27, 2024 | An out-of-bounds access occurs in utilities/var_export/var_export.c in RT-Thread through 5.0.2. | ||
| CVE-2024-25394 | Med | 0.28 | 4.3 | 0.01 | Mar 27, 2024 | A buffer overflow occurs in utilities/ymodem/ry_sy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character. | ||
| CVE-2025-1115 | Low | 0.21 | 3.3 | 0.00 | Feb 8, 2025 | A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function sys_device_close/sys_device_control/sys_device_find/sys_device_init/sys_device_open/sys_device_read/sys_device_register/sys_device_write/sys_event_delete/s… | ||
| CVE-2024-24335 | Hig | 0.00 | 8.4 | 0.00 | Mar 27, 2024 | A heap buffer overflow occurs in the dfs_v2 romfs filesystem RT-Thread through 5.0.2. | ||
| CVE-2024-24334 | Hig | 0.00 | 8.4 | 0.00 | Mar 27, 2024 | A heap buffer overflow occurs in dfs_v2 dfs_file in RT-Thread through 5.0.2. |
- risk 0.64cvss 9.8epss 0.01
A stack buffer overflow occurs in net/at/src/at_server.c in RT-Thread through 5.0.2.
- risk 0.57cvss 8.8epss 0.01
A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2.
- risk 0.55cvss 8.4epss 0.00
A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2.
- risk 0.55cvss 8.4epss 0.00
A heap buffer overflow occurs in finsh/msh_file.c and finsh/msh.c in RT-Thread through 5.0.2.
- risk 0.55cvss 8.4epss 0.00
drivers/wlan/wlan_mgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow.
- risk 0.52cvss 8.0epss 0.01
A vulnerability, which was classified as critical, was found in RT-Thread 5.1.0. Affected is the function sys_recvfrom of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument from leads to memory corruption.
- risk 0.52cvss 8.0epss 0.01
A vulnerability, which was classified as critical, has been found in RT-Thread 5.1.0. This issue affects the function sys_thread_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index.
- risk 0.52cvss 8.0epss 0.01
A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects the function csys_sendto of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument to leads to null pointer dereference.
- risk 0.52cvss 8.0epss 0.01
A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function sys_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index.
- risk 0.52cvss 8.0epss 0.01
A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The manipulation of the argument timeout leads to memory…
- risk 0.51cvss 7.8epss 0.00
A vulnerability, which was classified as critical, was found in RT-Thread up to 5.1.0. This affects the function sys_device_open/sys_device_read/sys_device_control/sys_device_init/sys_device_close/sys_device_write of the file components/drivers/core/device.c. The manipulation…
- risk 0.49cvss 7.5epss 0.01
RT-Thread through 5.0.2 generates random numbers with a weak algorithm of "seed = 214013L * seed + 2531011L; return (seed >> 16) & 0x7FFF;" in calc_random in drivers/misc/rt_random.c.
- risk 0.38cvss 5.9epss 0.00
An out-of-bounds access occurs in utilities/var_export/var_export.c in RT-Thread through 5.0.2.
- risk 0.28cvss 4.3epss 0.01
A buffer overflow occurs in utilities/ymodem/ry_sy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character.
- risk 0.21cvss 3.3epss 0.00
A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function sys_device_close/sys_device_control/sys_device_find/sys_device_init/sys_device_open/sys_device_read/sys_device_register/sys_device_write/sys_event_delete/s…
- risk 0.00cvss 8.4epss 0.00
A heap buffer overflow occurs in the dfs_v2 romfs filesystem RT-Thread through 5.0.2.
- risk 0.00cvss 8.4epss 0.00
A heap buffer overflow occurs in dfs_v2 dfs_file in RT-Thread through 5.0.2.