Azure RTOS ThreadX Remote Code Execution Vulnerability

Azure RTOS ThreadX is an advanced real-time operating system (RTOS) designed specifically for deeply embedded applications. An attacker can cause arbitrary read and write due to vulnerability in parameter checking mechanism in Azure RTOS ThreadX, which may lead to privilege escalation. The affected components include RTOS ThreadX v6.2.1 and below. The fixes have been included in ThreadX release 6.3.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

输入验证不恰当

Azure RTOS ThreadX 输入验证错误漏洞

Azure RTOS ThreadX是Azure RTOS开源的一种高级实时操作系统。 Azure RTOS ThreadX 6.3.0之前版本存在输入验证错误漏洞，该漏洞源于参数检查机制存在漏洞，攻击者利用该漏洞可以造成任意读写，从而导致权限提升。

N/A

N/A