What is CVE-2026-10658?

CVE-2026-10658 is a high-severity vulnerability in Zephyrproject-rtos Zephyr, classified under Out-of-bounds Read. CVSS score: 7.1/10. Published 2026-06-23.

How severe is CVE-2026-10658?

High severity. CVSS v3 base score is 7.1 out of 10.

Out-of-bounds Read in Zephyrproject-rtos Zephyr

CVE-2026-10658

A missing length validation in the Zephyr Bluetooth Host ISO receive path can be triggered by malformed HCI ISO data. In bt_iso_recv() (subsys/bluetooth/host/iso.c), when processing PB=START/SINGLE fragments, the code pulls a TS SDU header…

Vulnerability class: Buffer Overflow

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H.

Affected products

Zephyrproject-rtos Zephyr

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

vulnerabilities@zephyrproject.org

Frequently asked questions

What is CVE-2026-10658?: CVE-2026-10658 is a high-severity vulnerability in Zephyrproject-rtos Zephyr, classified under Out-of-bounds Read. CVSS score: 7.1/10. Published 2026-06-23.
How severe is CVE-2026-10658?: High severity. CVSS v3 base score is 7.1 out of 10.