Path Traversal in Ralim Ironos

CVE-2026-24801

Vulnerability in Ralim IronOS (source/Core/BSP/Pinecilv2/bl_mcu_sdk/components/ble/ble_stack/common/tinycrypt/source modules). This vulnerability is associated with program files ecc_dsa.C. This issue affects IronOS: before v2.23-rc3.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.002 (7.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References