CVE-2025-5866

Sažetak

A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function sys_sigprocmask of the file rt-thread/components/lwp/lwp_syscall.c. The manipulation of the argument how leads to improper validation of array index.

Reference

https://github.com/RT-Thread/rt-thread/issues/10300
https://vuldb.com/?ctiid.311625
https://vuldb.com/?id.311625
https://vuldb.com/?submit.584127

CVSS

Base:	7.4
Impact:	10.0
Exploitability:	4.4

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:A/AC:M/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-06-2025 - 12:15

Objavljeno

09-06-2025 - 07:15