Rt Thread

rt-thread

17 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (17)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-6693 1Rt Thread 1Rt Thread Jul 11, 2025 Jun 26, 2025 8.5 HIGH· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability, which was classified as critical, was found in RT-Thread up to 5.1.0. This affects the function sys_device_open/sys_device_read/sys_device_control/sys_device_init/sys_device_close/sys_device_write of the...Show more A vulnerability, which was classified as critical, was found in RT-Thread up to 5.1.0. This affects the function sys_device_open/sys_device_read/sys_device_control/sys_device_init/sys_device_close/sys_device_write of the file components/drivers/core/device.c. The manipulation leads to memory corruption. It is possible to launch the attack on the local host. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-5869 1Rt Thread 1Rt Thread Jul 11, 2025 Jun 9, 2025 8.6 HIGH· v4 9.8 CRITICAL· v3 7.7 HIGH· v2 A vulnerability, which was classified as critical, was found in RT-Thread 5.1.0. Affected is the function sys_recvfrom of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument from leads to me...Show more A vulnerability, which was classified as critical, was found in RT-Thread 5.1.0. Affected is the function sys_recvfrom of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument from leads to memory corruption.Show less
CVE-2025-5868 1Rt Thread 1Rt Thread Jul 11, 2025 Jun 9, 2025 8.6 HIGH· v4 9.8 CRITICAL· v3 7.4 HIGH· v2 A vulnerability, which was classified as critical, has been found in RT-Thread 5.1.0. This issue affects the function sys_thread_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the arg...Show more A vulnerability, which was classified as critical, has been found in RT-Thread 5.1.0. This issue affects the function sys_thread_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index.Show less
CVE-2025-5867 1Rt Thread 1Rt Thread Jul 11, 2025 Jun 9, 2025 8.6 HIGH· v4 9.8 CRITICAL· v3 7.7 HIGH· v2 A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects the function csys_sendto of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument to leads to nu...Show more A vulnerability classified as critical was found in RT-Thread 5.1.0. This vulnerability affects the function csys_sendto of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument to leads to null pointer dereference.Show less
CVE-2025-5866 1Rt Thread 1Rt Thread Jul 11, 2025 Jun 9, 2025 8.6 HIGH· v4 9.8 CRITICAL· v3 7.4 HIGH· v2 A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function sys_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improp...Show more A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function sys_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index.Show less
CVE-2025-5865 1Rt Thread 1Rt Thread Jul 11, 2025 Jun 9, 2025 8.6 HIGH· v4 9.8 CRITICAL· v3 7.7 HIGH· v2 A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The ma...Show more A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The manipulation of the argument timeout leads to memory corruption. The vendor explains, that "[t]he timeout parameter should be checked to check if it can be accessed correctly in kernel mode and used temporarily in kernel memory."Show less
CVE-2025-1115 1Rt Thread 1Rt Thread Nov 4, 2025 Feb 8, 2025 4.8 MEDIUM· v4 5.5 MEDIUM· v3 1.7 LOW· v2 A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function sys_device_close/sys_device_control/sys_device_find/sys_device_init/sys_device_open/sys_device_...Show more A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function sys_device_close/sys_device_control/sys_device_find/sys_device_init/sys_device_open/sys_device_read/sys_device_register/sys_device_write/sys_event_delete/sys_event_recv/sys_event_send/sys_mb_delete/sys_mb_recv/sys_mb_send/sys_mb_send_wait/sys_mq_recv/sys_mq_send/sys_mq_urgent/sys_mutex_delete/sys_mutex_release/sys_mutex_take/sys_rt_timer_control/sys_rt_timer_delete/sys_rt_timer_start/sys_rt_timer_stop/sys_sem_delete/sys_sem_release/sys_sem_take/sys_shmat/sys_shmdt/sys_thread_create/sys_thread_delete/sys_thread_startup/sys_timer_delete/sys_timer_gettime/sys_timer_settime of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument arg[0] leads to information disclosure. An attack has to be approached locally.Show less
CVE-2024-25395 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2.
CVE-2024-25394 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 A buffer overflow occurs in utilities/ymodem/ry_sy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character.
CVE-2024-25393 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A stack buffer overflow occurs in net/at/src/at_server.c in RT-Thread through 5.0.2.
CVE-2024-25392 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 5.9 MEDIUM· v3 N/A· v2 An out-of-bounds access occurs in utilities/var_export/var_export.c in RT-Thread through 5.0.2.
CVE-2024-25391 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2.
CVE-2024-25390 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 A heap buffer overflow occurs in finsh/msh_file.c and finsh/msh.c in RT-Thread through 5.0.2.
CVE-2024-25389 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 RT-Thread through 5.0.2 generates random numbers with a weak algorithm of "seed = 214013L * seed + 2531011L; return (seed >> 16) & 0x7FFF;" in calc_random in drivers/misc/rt_random.c.
CVE-2024-25388 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 drivers/wlan/wlan_mgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow.
CVE-2024-24335 1Rt Thread 1Rt Thread Nov 4, 2025 Mar 27, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 A heap buffer overflow occurs in the dfs_v2 romfs filesystem RT-Thread through 5.0.2.
CVE-2024-24334 1Rt Thread 1Rt Thread Apr 30, 2025 Mar 27, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 A heap buffer overflow occurs in dfs_v2 dfs_file in RT-Thread through 5.0.2.