Home > Vulnerability Database > CVE-2025-11616

Mend.io Vulnerability Database

CVE-2025-11616

Good to know:

Date: October 10, 2025

A missing validation check in FreeRTOS-Plus-TCP's ICMPv6 packet processing code can lead to an out-of-bounds read when receiving ICMPv6 packets of certain message types which are smaller than the expected size. These issues only affect applications using IPv6. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.

Severity Score

5.4

Related Resources (5)

Url: https://aws.amazon.com/security/security-bulletins/AWS-2025-023/

Url: https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/releases/tag/V4.3.4

Url: https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/security/advisories/GHSA-8j9h-xjm9-8j6j

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-11616

Url: https://www.mend.io/vulnerability-database/CVE-2025-11616

Severity Score

5.4

Weakness Type (CWE)

Buffer Over-read

CWE-126

Top Fix

Upgrade Version

Upgrade to version https://github.com/freertos/freertos-plus-tcp.git - V4.3.4

Learn More

CVSS v3.1

Base Score:	5.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2025-11616

Good to know:

Date: October 10, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?