Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
RT-Thread device.c sys_device_write memory corruption
Vulnerability Description
A vulnerability, which was classified as critical, was found in RT-Thread up to 5.1.0. This affects the function sys_device_open/sys_device_read/sys_device_control/sys_device_init/sys_device_close/sys_device_write of the file components/drivers/core/device.c. The manipulation leads to memory corruption. It is possible to launch the attack on the local host. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
RT-Thread 缓冲区错误漏洞
Vulnerability Description
RT-Thread是RT-Thread开源的一个开源物联网实时操作系统(RTOS)。 RT-Thread 5.1.0及之前版本存在缓冲区错误漏洞,该漏洞源于内存损坏,可能导致本地攻击。
CVSS Information
N/A
Vulnerability Type
N/A