CNNVD-202506-3060 Information

CNNVD ID

CNNVD-202506-3060

Related CVE

CVE-2025-2962

• CNNVD Published: 2025-06-24

Description (Chinese)

Zephyr是Zephyr开源的一个可扩展的实时操作系统 (RTOS)。 Zephyr 4.1及之前版本存在安全漏洞，该漏洞源于DNS实现存在缺陷，可能导致无限循环。

Description (English)

Zephyr is an extended real-time operating system (RTOS) from Zephyr open source. There is a security gap in Zephyr 4.1 and earlier versions, which stems from deficiencies in DNS implementation and may lead to an unlimited cycle.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Zephyr

Published

2025-06-24

Last Modified

2026-02-24

References

https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-2qp5-c2vq-g2ww https://access.redhat.com/security/cve/cve-2025-2962

Patch

https://docs.zephyrproject.org/latest/