CVE-2025-55081CRITICAL 9.1EPSS p25.3%

CVE-2025-55081CVE-2025-55081

Description

In Eclipse Foundation NextX Duo before 6.4.4, a module of ThreadX, the _nx_secure_tls_process_clienthello() function was missing length verification of certain SSL/TLS client hello message: the ciphersuite length and compression method length. In case of an attacker-crafted message with values outside of the expected range, it could cause an out-of-bound read.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS0.34% probability of exploitation · percentile 25.3% · 2026-06-19T12:03:05Z
Published2025-10-15
Last modified2025-10-27

Underlying weaknesses· 2

CWE-126CWE-125

References

  1. https://github.com/eclipse-threadx/netxduo/security/advisories/GHSA-5vrv-8j5h-h6h6

2

TypeTargetConfidenceTier
WeaknessOut-of-bounds Readcwe-1250%live
WeaknessBuffer Over-readcwe-1260%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-55086
CVE
CVE-2025-55089
CVE
CVE-2025-55100
CVE
CVE-2026-5503
CVE
CVE-2026-5260
CVE
CVE-2026-5264
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.