Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

214 matches found

OSV
OSVadded 2025/10/17 3:15 p.m.2 views

CVE-2025-55085

In NextX Duo before 6.4.4, in the HTTP client module, the network support code for Eclipse Foundation ThreadX, the parsing of HTTP header fields was missing bounds verification. A crafted server response could cause undefined behavior...

7.5CVSS7.1AI score
Exploits0References1
Cvelist
Cvelistadded 2025/10/17 2:22 p.m.20 views

CVE-2025-55085 Web http client: Unchecked Server-Side Malicious Packet Issue

In NextX Duo before 6.4.4, in the HTTP client module, the network support code for Eclipse Foundation ThreadX, the parsing of HTTP header fields was missing bounds verification. A crafted server response could cause undefined behavior...

8.8CVSS0.00168EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/17 2:22 p.m.3 views

EUVD-2025-34883

In NextX Duo before 6.4.4, in the HTTP client module, the network support code for Eclipse Foundation ThreadX, the parsing of HTTP header fields was missing bounds verification. A crafted server response could cause undefined behavior...

8.8CVSS6.5AI score0.00168EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/10/17 8:40 a.m.5 views

CVE-2025-55091

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxippacketreceive function when received an Ethernet with type set as IP but no IP data...

6.9CVSS6.8AI score0.00057EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/10/17 6:41 a.m.4 views

CVE-2025-55089

In FileX before 6.4.2, the file support module for Eclipse Foundation ThreadX, there was a possible buffer overflow in the FileX RAM disk driver. It could cause a remote execurtion after receiving a crafted sequence of packets...

9.2CVSS7.2AI score0.00074EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/10/17 6:41 a.m.5 views

CVE-2025-55084

In NetX Duo version before 6.4.4, the component of Eclipse Foundation ThreadX, there was an incorrect bound check innxsecuretlsprocclienthellosupportedversionsextension in the extension version field...

6.9CVSS6.9AI score0.0004EPSS
Exploits0References1
OSV
OSVadded 2025/10/17 6:15 a.m.1 views

CVE-2025-55099

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudioalternatesettinglocate when parsing a descriptor with attacker-controlled frequency fields...

6.1CVSS5.5AI score
Exploits0References1
NVD
NVDadded 2025/10/17 6:15 a.m.2 views

CVE-2025-55100

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudio10samparsefunc when parsing a list of sampling frequencies...

9.1CVSS0.00125EPSS
Exploits1References1
NVD
NVDadded 2025/10/17 6:15 a.m.4 views

CVE-2025-55097

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

6.1CVSS0.00037EPSS
Exploits0References1
NVD
NVDadded 2025/10/17 6:15 a.m.1 views

CVE-2025-55098

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiodevicetypeget when parsing a descriptor of an USB audio device...

6.1CVSS0.00038EPSS
Exploits1References1
OSV
OSVadded 2025/10/17 6:15 a.m.2 views

CVE-2025-55097

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

6.1CVSS5.5AI score
Exploits0References1
NVD
NVDadded 2025/10/17 6:15 a.m.1 views

CVE-2025-55094

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxicmpv6validateoptions when handling a packet with ICMP6 options...

7.5CVSS0.00047EPSS
Exploits0References1
NVD
NVDadded 2025/10/17 6:15 a.m.1 views

CVE-2025-55087

In NextX Duo's snmp addon versions before 6.4.4, a part of the Eclipse Foundation ThreadX, an attacker could cause an out-of-bound read by a crafted SNMPv3 security parameters...

7.5CVSS0.00093EPSS
Exploits0References1
OSV
OSVadded 2025/10/17 6:15 a.m.1 views

CVE-2025-55087

In NextX Duo's snmp addon versions before 6.4.4, a part of the Eclipse Foundation ThreadX, an attacker could cause an out-of-bound read by a crafted SNMPv3 security parameters...

7.5CVSS6.7AI score
Exploits0References1
CVE
CVEadded 2025/10/17 6:3 a.m.4 views

CVE-2025-55087

Summary of CVE-2025-55087 (CVE-2025-55087) : The vulnerability affects NextX Duo’s SNMP addon (part of Eclipse ThreadX) in versions prior to 6.4.4. An attacker could trigger an out-of-bounds read by sending crafted SNMPv3 security parameters. Public data from NVD and other sources describe the sa...

7.5CVSS6.3AI score0.00093EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/10/17 5:40 a.m.3 views

CVE-2025-55100 Potential out-of-bounds read in _ux_host_class_audio10_sam_parse_func()

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudio10samparsefunc when parsing a list of sampling frequencies...

2.4CVSS0.00125EPSS
Exploits1References1
CVE
CVEadded 2025/10/17 5:38 a.m.5 views

CVE-2025-55099

CVE-2025-55099 concerns Eclipse ThreadX USBX prior to 6.4.3, where the USB support module has a potential out-of-bounds read in _ux_host_class_audio_alternate_setting_locate() when parsing a descriptor with attacker-controlled frequency fields. Red Hat and multiple sources reiterate this exact is...

6.1CVSS6.4AI score0.00051EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2025/10/17 5:38 a.m.4 views

CVE-2025-55099 Potential out-of-bounds read in _ux_host_class_audio_alternate_setting_locate()

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudioalternatesettinglocate when parsing a descriptor with attacker-controlled frequency fields...

2.4CVSS0.00051EPSS
Exploits1References1
CVE
CVEadded 2025/10/17 5:36 a.m.5 views

CVE-2025-55098

CVE-2025-55098 affects USBX (USB support module for Eclipse Foundation ThreadX) prior to 6.4.3. The vulnerability is a potential out-of-bounds read in the function _ux_host_class_audio_device_type_get() when parsing a USB audio device descriptor. Multiple sources (NVD, Red Hat, CVE lists) confirm...

6.1CVSS6.5AI score0.00038EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/17 5:36 a.m.2 views

CVE-2025-55098 Potential out-of-bounds read in _ux_host_class_audio_device_type_get()

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiodevicetypeget when parsing a descriptor of an USB audio device...

1CVSS6.5AI score0.00038EPSS
Exploits1References1
Rows per page
Query Builder