Eun0Us

**Name of the Vulnerable Software and Affected Versions** FreeRTOS-Plus-TCP versions prior to 4.2.6 FreeRTOS-Plus-TCP versions prior to 4.4.1 **Description** Insufficient packet validation allows an adjacent network actor to bypass checksum and minimum-size validation. This occurs because the loopback detection mechanism skips all input validation for packets where the Ethernet source MAC address is spoofed to match one of the device's own registered endpoints. **Recommendations** Upgrade to version 4.2.6 or later. Upgrade to version 4.4.1 or later.

**Name of the Vulnerable Software and Affected Versions** FreeRTOS-Plus-TCP versions prior to V4.2.6 FreeRTOS-Plus-TCP versions prior to V4.4.1 **Description** Insufficient option length validation in the IPv6 Router Advertisement parser allows an adjacent network actor to cause a denial of service, resulting in a device crash. This occurs when a crafted Router Advertisement is sent with a truncated PREFIX INFORMATION option that is smaller than the expected structure size. **Recommendations** Upgrade to version V4.2.6 or later. Upgrade to version V4.4.1 or later.

**Name of the Vulnerable Software and Affected Versions** FreeRTOS-Plus-TCP versions prior to V4.2.6 FreeRTOS-Plus-TCP versions prior to V4.4.1 **Description** Insufficient validation of the prefix length field during IPv6 Router Advertisement processing allows an adjacent network actor to cause memory corruption. By sending a crafted Router Advertisement with a prefix length value exceeding the maximum valid length, a heap buffer overflow occurs. This issue does not impact users who only process IPv4 Router Advertisements. **Recommendations** Upgrade to version V4.2.6 or later. Upgrade to version V4.4.1 or later.