CVE-2025-5865

Public Exploit

RT-Thread Parameter lwp_syscall.c sys_select memory corruption

Description

A vulnerability was found in RT-Thread 5.1.0. It has been rated as critical. Affected by this issue is the function sys_select of the file rt-thread/components/lwp/lwp_syscall.c of the component Parameter Handler. The manipulation of the argument timeout leads to memory corruption. The vendor explains, that "[t]he timeout parameter should be checked to check if it can be accessed correctly in kernel mode and used temporarily in kernel memory."

References

Link	Tags
https://vuldb.com/?id.311624	third party advisory technical description vdb entry
https://vuldb.com/?ctiid.311624	permissions required vdb entry signature
https://vuldb.com/?submit.584124	third party advisory vdb entry
https://github.com/RT-Thread/rt-thread/issues/10298	third party advisory exploit issue tracking
https://github.com/RT-Thread/rt-thread/issues/10298#issuecomment-2894952150	third party advisory issue tracking exploit

Frequently Asked Questions

What is the severity of CVE-2025-5865?: CVE-2025-5865 has been scored as a high severity vulnerability.
How to fix CVE-2025-5865?: To fix CVE-2025-5865, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-5865 being actively exploited in the wild?: It is possible that CVE-2025-5865 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-5865?: CVE-2025-5865 affects n/a RT-Thread.

Description

Category

CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer

References

Frequently Asked Questions