QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-55086

Back to search

CVE-2025-55086

Published: Oct 20, 2025

Modified: Oct 20, 2025

PUBLISHED

Description

In NetXDuo version before 6.4.4, a networking support module for Eclipse Foundation ThreadX, in the DHCPV6 client there was an unchecked index extracting the server DUID from the server reply. With a crafted packet, an attacker could cause an out of memory read.

VendorProductVersions

Eclipse Foundation

NextX Duo

affected
0 - < 6.4.4

Weaknesses (CWE)

CWE-1285
CWE-125

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now