PT-2026-4936 · Eclipse · Eclipse Threadx Netx Duo

CVE-2025-55102

·

Published

2026-01-27

·

Updated

2026-01-27

CVSS v4.0

8.7

High

VectorAV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Name of the Vulnerable Software and Affected Versions Eclipse ThreadX NetX Duo (affected versions not specified)
Description A denial-of-service issue exists in the NetX IPv6 component of Eclipse ThreadX NetX Duo. Sending a specially crafted network packet of "Packet Too Big" with more than 15 different source addresses can cause a denial-of-service condition. An attacker can trigger this issue by sending a malicious packet.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Improper Resource Release

Resource Exhaustion

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2025-55102
GHSA-F3RX-XRWM-Q2RF

Affected Products

Eclipse Threadx Netx Duo