CNNVD-202601-4600 Information

CNNVD ID

CNNVD-202601-4600

Related CVE

CVE-2026-24801

• CNNVD Published: 2026-01-27

Description (Chinese)

IronOS是Ben V. Brown个人开发者的一个固件系统。 IronOS v2.23-rc3之前版本存在安全漏洞，该漏洞源于蓝牙协议栈组件ecc_dsa.C存在漏洞，可能导致加密签名验证不当。

Description (English)

IronOS is a solidware system for Ben V. Brown’s personal developers. There was a security loophole in the previous version of IronOS v2.23-rc3, which stemmed from a loophole in the Bluetooth Barracks componentec dsa.C, which could lead to improper authentication of encrypted signatures.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/Ralim/IronOS/pull/2087 https://access.redhat.com/security/cve/cve-2026-24801

Patch

https://github.com/Ralim/IronOS/commit/d775036c9e587e063a518ca9a555c4591a7efe06