CNNVD-202509-3060 Information

CNNVD ID

CNNVD-202509-3060

Related CVE

CVE-2025-10456

• CNNVD Published: 2025-09-19

Description (Chinese)

Zephyr是Zephyr开源的一个可扩展的实时操作系统 (RTOS)。 Zephyr存在安全漏洞，该漏洞源于处理蓝牙低能耗固定通道时存在缺陷，可能导致未定义行为，包括断言失败、崩溃或内存损坏。

Description (English)

Zephyr is an extended real-time operating system (RTOS) from Zephyr open source. Zephyr has a security loophole, which stems from deficiencies in the handling of fixed corridors with low energy consumption in blue teeth, which may lead to undefined behaviour, including claims of failure, collapse or memory damage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Zephyr

Published

2025-09-19

Last Modified

2026-02-24

References

https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hcc8-3qr7-c9m8 https://access.redhat.com/security/cve/cve-2025-10456