Primary

Context

FreeRTOS-Plus-TCP Buffer Over-Read Vulnerability in IPv6 Packet Processing

Vulnerability

Patched

A buffer over-read vulnerability has been identified in FreeRTOS-Plus-TCP's IPv6 packet processing. This issue arises from a missing validation check that allows improper payload lengths in IPv6 packets to cause out-of-bounds read operations. The vulnerability affects FreeRTOS-Plus-TCP versions 4.0.0 prior to 4.3.3, when IPv6 support is enabled.

Impact

Exploitation of this vulnerability leads to a buffer over-read, where the application reads data beyond the allocated memory buffer, potentially causing memory corruption or leaking sensitive information.

Remediation

Users are advised to upgrade to FreeRTOS-Plus-TCP version 4.3.4, which addresses this vulnerability. For those using forked or derivative versions, ensure to incorporate the latest fixes.

Added: Oct 10, 2025, 6:23 PM

Updated: Oct 10, 2025, 6:23 PM

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FreeRTOS-Plus-TCP Buffer Over-Read Vulnerability in IPv6 Packet Processing

Vulnerability

Impact

Remediation

Affected Products

FreeRTOS-Plus-TCP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating