Home > Vulnerability Database > CVE-2025-11617

Mend.io Vulnerability Database

CVE-2025-11617

Good to know:

Date: October 10, 2025

A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6 packet with incorrect payload lengths in the packet header. This issue only affects applications using IPv6. We recommend users upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.

Severity Score

5.4

Related Resources (5)

Url: https://aws.amazon.com/security/security-bulletins/AWS-2025-023/

Url: https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/releases/tag/V4.3.4

Url: https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/security/advisories/GHSA-wmjr-wm93-cvv2

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-11617

Url: https://www.mend.io/vulnerability-database/CVE-2025-11617

Severity Score

5.4

Weakness Type (CWE)

Buffer Over-read

CWE-126

Top Fix

Upgrade Version

Upgrade to version https://github.com/freertos/freertos-plus-tcp.git - v4.3.4

Learn More

CVSS v3.1

Base Score:	5.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2025-11617

Good to know:

Date: October 10, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?