CVE-2026-25139CRITICAL 9.1EPSS p37.7%

CVE-2026-25139CVE-2026-25139

Description

RIOT is an open-source microcontroller operating system, designed to match the requirements of Internet of Things (IoT) devices and other embedded devices. In version 2025.10 and prior, multiple out-of-bounds read allow any unauthenticated user, with ability to send or manipulate input packets, to read adjacent memory locations, or crash a vulnerable device running the 6LoWPAN stack. The received packet is cast into a sixlowpan_sfr_rfrag_t struct and dereferenced without validating the packet is large enough to contain the struct object. At time of publication, no known patch exists.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS0.48% probability of exploitation · percentile 37.7% · 2026-06-18T12:00:27Z
Published2026-02-04
Last modified2026-02-20

Underlying weaknesses· 1

CWE-125

References

  1. https://github.com/RIOT-OS/RIOT/security/advisories/GHSA-c8fh-23qr-97mc

1

TypeTargetConfidenceTier
WeaknessOut-of-bounds Readcwe-1250%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-66647
CVE
CVE-2026-27703
CVE
CVE-2026-22213
CVE
CVE-2026-22214
CVE
CVE-2025-53888
CVE
CVE-2026-10305
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.