CVE-2025-5865: RT-Thread Parameter lwp_syscall.c sys_select memory corruption
Description
A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The manipulation of the argument timeout leads to memory corruption. The vendor explains, that "[t]he timeout parameter should be checked to check if it can be accessed correctly in kernel mode and used temporarily in kernel memory." Eine kritische Schwachstelle wurde in RT-Thread 5.1.0 ausgemacht. Hierbei geht es um die Funktion sys_select der Datei rt-thread/components/lwp/lwp_syscall.c der Komponente Parameter Handler. Mittels dem Manipulieren des Arguments timeout mit unbekannten Daten kann eine memory corruption-Schwachstelle ausgenutzt werden.
Classification
CVE ID: CVE-2025-5865
CVSS Base Severity: HIGH
CVSS Base Score: 8.0
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Problem Types
Memory CorruptionAffected Products
Vendor: n/a
Product: RT-Thread
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.03% (probability of being exploited)
EPSS Percentile: 5.2% (scored less or equal to compared to others)
EPSS Date: 2025-06-12 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-5865https://vuldb.com/?id.311624
https://vuldb.com/?ctiid.311624
https://vuldb.com/?submit.584124
https://github.com/RT-Thread/rt-thread/issues/10298
https://github.com/RT-Thread/rt-thread/issues/10298#issuecomment-2894952150