PT-2026-55581 · Undefined · Undefined

Zephyr Saxon

·

Publicado

2026-07-03

·

Atualizado

2026-07-03

·

CVE-2026-14607

CVSS v2.0

4.6

Média

VetorAV:L/AC:L/Au:S/C:N/I:N/A:C
A weakness has been identified in RT-Thread up to 5.0.2. This affects the function sys getaddrinfo of the file components/lwp/lwp syscall.c. Executing a manipulation of the argument ai addr can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be used for attacks. The pull request to fix this issue awaits acceptance.

Exploit

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

Enumeração de Fraquezas

Identificadores relacionados

CVE-2026-14607

Produtos afetados

Undefined