CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RT-Thread through 5.0.2 generates random numbers with a weak algorithm of "seed = 214013L seed + 2531011L; return seed 16 & 0x7FFF;" in calcrandom in drivers/misc/rtrandom.c...

7.5CVSS6.9AI score

Exploits0References6

OSV•added 2024/03/27 3:15 a.m.•7 views

CVE-2024-25395

A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2...

8.8CVSS7.4AI score

Exploits0References6

OSV•added 2024/03/27 3:15 a.m.•8 views

CVE-2024-24335

A heap buffer overflow occurs in the dfsv2 romfs filesystem RT-Thread through 5.0.2...

8.4CVSS7.5AI score

Exploits0References7

NVD•added 2024/03/27 3:15 a.m.•14 views

CVE-2024-25389

RT-Thread through 5.0.2 generates random numbers with a weak algorithm of "seed = 214013L seed + 2531011L; return seed 16 & 0x7FFF;" in calcrandom in drivers/misc/rtrandom.c...

7.5CVSS6.6AI score0.00345EPSS

Exploits0References6

NVD•added 2024/03/27 3:15 a.m.•12 views

CVE-2024-25391

A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2...

8.4CVSS7.1AI score0.00057EPSS

Exploits0References6

NVD•added 2024/03/27 3:15 a.m.•12 views

CVE-2024-25390

A heap buffer overflow occurs in finsh/mshfile.c and finsh/msh.c in RT-Thread through 5.0.2...

8.4CVSS7.1AI score0.00057EPSS

Exploits0References6

NVD•added 2024/03/27 3:15 a.m.•10 views

CVE-2024-25388

drivers/wlan/wlanmgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow...

8.4CVSS6.8AI score0.00057EPSS

Exploits0References6

NVD•added 2024/03/27 3:15 a.m.•7 views

CVE-2024-25395

A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2...

8.8CVSS7.1AI score0.00449EPSS

Exploits0References6

NVD•added 2024/03/27 3:15 a.m.•21 views

CVE-2024-25393

A stack buffer overflow occurs in net/at/src/atserver.c in RT-Thread through 5.0.2...

9.8CVSS7.1AI score0.00449EPSS

Exploits0References6

OSV•added 2024/03/27 3:15 a.m.•9 views

CVE-2024-25394

A buffer overflow occurs in utilities/ymodem/rysy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character...

4.3CVSS7.4AI score

Exploits0References6

OSV•added 2024/03/27 3:15 a.m.•16 views

CVE-2024-25392

An out-of-bounds access occurs in utilities/varexport/varexport.c in RT-Thread through 5.0.2...

5.9CVSS6.9AI score

Exploits0References6

CNNVD•added 2024/03/27 12:0 a.m.•2 views

RT-Thread 安全漏洞

RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from a buffer overflow vulnerability that stems from dfsv2 dfsfile failing to properly validate the length size of input data, which can be exploited by a remote attacker to execute...

8.4CVSS8.1AI score0.00071EPSS

Exploits0References6

CNNVD•added 2024/03/27 12:0 a.m.•2 views

RT-Thread 安全漏洞

RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. A security vulnerability exists in RT-Thread version 5.0.2, which stems from the calcrandom method in drivers/misc/rtrandom.c that uses a weak algorithm to generate random numbers...

7.5CVSS6.7AI score0.00345EPSS

Exploits0References5