145 matches found
CVE-2024-24335
A heap buffer overflow occurs in the dfsv2 romfs filesystem RT-Thread through 5.0.2...
CVE-2024-24334
A heap buffer overflow occurs in dfsv2 dfsfile in RT-Thread through 5.0.2...
CVE-2024-25391
A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2...
CVE-2024-25388
drivers/wlan/wlanmgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow...
CVE-2024-25395
A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2...
CVE-2024-25394
A buffer overflow occurs in utilities/ymodem/rysy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character...
CVE-2024-25389
RT-Thread through 5.0.2 generates random numbers with a weak algorithm of "seed = 214013L seed + 2531011L; return seed 16 & 0x7FFF;" in calcrandom in drivers/misc/rtrandom.c...
CVE-2024-25392
An out-of-bounds access occurs in utilities/varexport/varexport.c in RT-Thread through 5.0.2...
CVE-2025-1115
A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...
CVE-2025-1115
A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...
CVE-2025-1115 RT-Thread lwp_syscall.c sys_timer_settime information disclosure
A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...
CVE-2025-1115
RT-Thread up to 5.1.0 is affected by a local-information-disclosure vulnerability in the lwp_syscall.c path (sys_device_close/sys_device_control/etc.). The issue stems from improper handling/manipulation of the argument arg[0], enabling information disclosure via local access. Exploit details are...
CVE-2025-1115 RT-Thread lwp_syscall.c sys_timer_settime information disclosure
A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...
PT-2025-6016 · Rt-Thread · Rt-Thread
Name of the Vulnerable Software and Affected Versions: RT-Thread versions up to 5.1.0 Description: A problematic vulnerability was found in RT-Thread. The issue affects the sys thread create function of the file rt-thread/components/lwp/lwp syscall.c. The manipulation of the argument arg0 leads t...
RT-Thread dfs_v2 dfs_file function buffer overflow vulnerability
RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from a buffer overflow vulnerability that stems from dfsv2 dfsfile failing to properly validate the length size of input data, which can be exploited by a remote attacker to execute...
RT-Thread dfs_v2 romfs function buffer overflow vulnerability
RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from a buffer overflow vulnerability that stems from the dfsv2 romfs file failing to properly validate the length size of input data, which can be exploited by remote attackers to execute...
CVE-2024-25392
An out-of-bounds access occurs in utilities/varexport/varexport.c in RT-Thread through 5.0.2...
CVE-2024-24334
A heap buffer overflow occurs in dfsv2 dfsfile in RT-Thread through 5.0.2...
CVE-2024-25394
A buffer overflow occurs in utilities/ymodem/rysy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character...
CVE-2024-25390
A heap buffer overflow occurs in finsh/mshfile.c and finsh/msh.c in RT-Thread through 5.0.2...