CNNVD-202601-4526 Information

CNNVD ID

CNNVD-202601-4526

Related CVE

CVE-2026-0648

• CNNVD Published: 2026-01-27

Description (Chinese)

Eclipse ThreadX USBX是Eclipse ThreadX开源的一个USB主机、设备和移动嵌入式堆栈。 Eclipse ThreadX USBX存在安全漏洞，该漏洞源于CreateCounter函数中错误检查逻辑不当，可能导致拒绝服务攻击或未授权内存访问。

Description (English)

Eclipse ThreadX USBX is a USB host, device and mobile embedded stack from Eclipse ThreadX open source. There is a security loophole in Eclipse ThreadX USBX, which stems from the error-checking logic in the CreateCounter function, which may lead to denial of service attacks or unauthorized memory access.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Eclipse ThreadX

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/eclipse-threadx/threadx/security/advisories/GHSA-xj75-fc68-h4rw https://access.redhat.com/security/cve/cve-2026-0648

Patch

https://github.com/eclipse-threadx/usbx/releases