CVE-2025-55099

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudioalternatesettinglocate when parsing a descriptor with attacker-controlled frequency fields...

CVE-2025-55097

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

CVE-2025-55098

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiodevicetypeget when parsing a descriptor of an USB audio device...

CVE-2025-55100 Potential out-of-bounds read in _ux_host_class_audio10_sam_parse_func()

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudio10samparsefunc when parsing a list of sampling frequencies...

CVE-2025-55100

CVE-2025-55100 affects USBX (ThreadX USB support module) prior to version 6.4.3. The issue is an out-of-bounds read in the function _ux_host_class_audio10_sam_parse_func() while parsing a list of sampling frequencies, which could lead to a crash or potential data exposure. Red Hat and CVE aggrega...

CVE-2025-55098 Potential out-of-bounds read in _ux_host_class_audio_device_type_get()

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiodevicetypeget when parsing a descriptor of an USB audio device...

EUVD-2025-34867

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclassaudiostreamingsamplingget when parsing a descriptor of an USB streaming device...

CVE-2025-55097

CVE-2025-55097 affects the USBX USB host module in Eclipse ThreadX prior to version 6.4.3, where an out-of-bounds read can occur in _ux_host_class_audio_streaming_sampling_get() while parsing a USB streaming device descriptor. The issue is described across multiple sources (NVD, Red Hat, CVE reco...

EUVD-2025-34868

In USBX before 6.4.3, the USB support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in uxhostclasshidreportdescriptorget when parsing a descriptor of an USB HID device...

CVE-2023-48697 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to memory buffer and pointer vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in...

CVE-2023-48696

Azure RTOS USBX contains a remote code execution vulnerability caused by an expired pointer dereference in the USBX host/CDC ACM path for RTOS v6.2.1 and earlier. Affected component: USBX within Azure RTOS USBX stack (host class/CDC ACM). Remediation: upgrade to USBX release 6.3.0 or later. Explo...

CVE-2023-48694

CVE-2023-48694 : Azure RTOS USBX contains an expired pointer dereference and type confusion vulnerability that can lead to remote code execution. Affected: USBX in RTOS v6.2.1 and earlier (host stack, host class, device-linked classes such as ASIX, Prolific, SWAR, audio, CDC ECM). Root cause: poi...

Azure RTOS USBX 数字错误漏洞

Azure RTOS USBX is a USB host, device, and mobile OTG embedded stack for Azure RTOS open source. Fully integrated with Azure RTOS ThreadX, it is available for all processors that support Azure RTOS ThreadX. A numeric error vulnerability exists in Azure RTOS USBX versions prior to 6.1.12, which...