PT-2025-28941 · Ameba Aiot · Ameba-Arduino-D+1
Xiaobye
+1
·
Published
2025-07-09
·
Updated
2025-09-08
·
CVE-2025-49604
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
Ameba-AIoT ameba-arduino-d versions prior to 3.1.9
ameba-rtos-d versions prior to commit c2bfd8216a1cbc19ad2ab5f48f372ecea756d67a
Description:
A heap-based buffer overflow exists in the WLAN driver defragment function due to a lack of validation of the size of fragmented Wi-Fi frames.
Recommendations:
Update Ameba-AIoT ameba-arduino-d to version 3.1.9 or later.
Update ameba-rtos-d to commit c2bfd8216a1cbc19ad2ab5f48f372ecea756d67a or later.
Fix
Heap Based Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ameba-Arduino-D
Ameba-Rtos-D