Aws Freertos-plus-tcp
7 CVEs affecting Aws Freertos-plus-tcp. Latest disclosed: 2026-04-29. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-7426 | High | 8.1 | 2026-04-29 | Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent net… |
CVE-2026-7424 | High | 8.1 | 2026-04-29 | Integer underflow in the DHCPv6 sub-option parser in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network actor to corrupt the device's IPv6 a… |
CVE-2026-7425 | Medium | 6.5 | 2026-04-29 | Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to… |
CVE-2026-7422 | Medium | 6.5 | 2026-04-29 | Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and minimum-size validatio… |
CVE-2025-11617 | Medium | 5.4 | 2025-10-10 | A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6 packet with incorrect pay… |
CVE-2026-7423 | Medium | 5.3 | 2026-04-29 | Integer underflow in the ICMP and ICMPv6 echo reply handlers in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network user to cause a denial of… |
CVE-2025-11618 | Medium | 4.3 | 2025-10-10 | A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 packet processing code can lead to an invalid pointer dereference when receiving a UDP/IPv6 packet w… |