Home

Description

RIOT is an open-source microcontroller operating system, designed to match the requirements of Internet of Things (IoT) devices and other embedded devices. In version 2025.10 and prior, multiple out-of-bounds read allow any unauthenticated user, with ability to send or manipulate input packets, to read adjacent memory locations, or crash a vulnerable device running the 6LoWPAN stack. The received packet is cast into a sixlowpan_sfr_rfrag_t struct and dereferenced without validating the packet is large enough to contain the struct object. At time of publication, no known patch exists.

PUBLISHED Reserved 2026-01-29 | Published 2026-02-04 | Updated 2026-02-04 | Assigner GitHub_M




HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-125: Out-of-bounds Read

Product status

<= 2025.10
affected

References

github.com/...S/RIOT/security/advisories/GHSA-c8fh-23qr-97mc

cve.org (CVE-2026-25139)

nvd.nist.gov (CVE-2026-25139)

Download JSON