PT-2026-2623 · Qnx · Qnx Os For Safety+1
Published
2026-01-13
·
Updated
2026-01-13
·
CVE-2025-8090
CVSS v3.1
6.2
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
QNX Neutrino Kernel versions 7.0 and 7.1
QNX OS for Safety versions 2.0, 2.1 and 2.2
Description
A flaw exists in the
MsgRegisterEvent() system call that could allow a local attacker with code execution abilities to cause a system crash. The issue is a null pointer dereference.Recommendations
Versions prior to 7.1 should be updated.
Versions prior to 2.2 of QNX OS for Safety should be updated.
Versions prior to 7.0 should be updated.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qnx Neutrino Kernel
Qnx Os For Safety