QwikSec

Security Database

CVE

CWE

Training

CVE-2025-55078

Published: Oct 14, 2025

Modified: Oct 14, 2025

PUBLISHED

Description

In Eclipse ThreadX before version 6.4.3, an attacker can cause a denial of service (crash) by providing a pointer to a reserved or unmapped memory region. Vulnerable system calls had a check of pointers, but that check wasn't verifying whether the pointer is outside the module memory region.

Vendor	Product	Versions
Eclipse Foundation	ThreadX	affected `0 - <= 6.4.2`

Weaknesses (CWE)

References

https://github.com/eclipse-threadx/threadx/security/advisories/GHSA-wcfg-5jpf-hhxq

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.