Amazon Freertos-plus-tcp — known CVE vulnerabilities
Every CVE whose affected-product data names Amazon Freertos-plus-tcp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2024-38373 — CVSS 9.6 (critical): FreeRTOS-Plus-TCP is a lightweight TCP/IP stack for FreeRTOS. FreeRTOS-Plus-TCP versions 4.0.0 through 4.1.0 contain a buffer over-read…
CVE-2026-7426 — CVSS 8.1 (high): Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1…
CVE-2026-7424 — CVSS 8.1 (high): Integer underflow in the DHCPv6 sub-option parser in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network actor to corrupt…
CVE-2026-7422 — CVSS 6.5 (medium): Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and…
CVE-2026-7425 — CVSS 6.5 (medium): Insufficient option length validation in the IPv6 Router Advertisement parser in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an…
CVE-2025-11616 — CVSS 5.4 (medium): A missing validation check in FreeRTOS-Plus-TCP's ICMPv6 packet processing code can lead to an out-of-bounds read when receiving ICMPv6…
CVE-2025-11617 — CVSS 5.4 (medium): A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6…
CVE-2026-7423 — CVSS 5.3 (medium): Integer underflow in the ICMP and ICMPv6 echo reply handlers in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network user…
CVE-2025-11618 — CVSS 4.3 (medium): A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 packet processing code can lead to an invalid pointer dereference when receiving…