Primary

Context

Zephyr Stack Overflow Vulnerability via ICMP Ping to Self

Vulnerability

A stack overflow vulnerability has been identified in Zephyr versions through 4.3. When the 'net ping' command is issued to a device's own IPv4 address, the network stack recursively processes the echo request and reply inline, leading to a stack overflow. This occurs because the destination is treated as local, causing the nested input frames to exceed the work-queue stack limit. The issue has been observed in the 'samples/net/sockets/echo_server' application.

Impact

Exploitation of this vulnerability causes a stack overflow, leading to a bus fault and a fatal error, halting the system.

Reproduction

To reproduce this vulnerability, configure a Zephyr device with an IPv4 address. Then, build and upload the 'samples/net/sockets/echo_server' application. Once the application is running, issue the 'net ping' command to the device's own IPv4 address. The network stack will recursively process the echo request and reply, causing a stack overflow.

Added: May 12, 2026, 7:19 AM

Updated: May 12, 2026, 7:19 AM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

4.6

remediation

0.0

relevance

8.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

4.6

remediation

0.0

relevance

8.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zephyr Stack Overflow Vulnerability via ICMP Ping to Self

Vulnerability

Impact

Reproduction

Affected Products

Zephyr

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating