Vulnerability in Eclipse Foundation Threadx

CVE-2025-55080

In Eclipse ThreadX before 6.4.3, when memory protection is enabled, syscall parameters verification wasn't enough, allowing an attacker to obtain an arbitrary memory read/write.

EPSS: 0.000 (5.3th percentile) — read the EPSS interpretation.

Affected products

Eclipse Foundation Threadx — versions 0

Weakness classification (CWE)

CWE-233

References

github.com/eclipse-threadx/threadx/security/advisories/GHSA-76hh-wrj5-hr2v (vendor-advisory)