216.73.217.86

CVE-2025-5865

· Published 09/06/2025 07:15 · Modified 09/06/2025 14:15

Labels: CVE-2025-5865 2025-06-09CVE-2025-5865CWE-119[email protected]

Essential information

Published
09/06/2025 07:15
Modified
09/06/2025 14:15
Author
Creator
CVSS
8.6 HIGH (v3) 8.6 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The manipulation of the argument timeout leads to memory corruption. The vendor explains, that "[t]he timeout parameter should be checked to check if it can be accessed correctly in kernel mode and used temporarily in kernel memory."

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
rt-thread / rt-thread cpe:2.3:a:rt-thread:rt-thread:5.1.0:*:*:*:*:*:*:*

References