Skip to main content

Riot

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-25139 CRITICAL POC Act Now

RIOT IoT operating system has an out-of-bounds read vulnerability (CVSS 9.1) that could lead to information disclosure or crashes on IoT devices.

Denial Of Service IoT Riot
NVD GitHub
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-22214 CRITICAL Act Now

RIOT OS ethos utility has a stack buffer overflow in _handle_char() due to missing bounds checking on serial frame data. Incoming frame bytes overflow a fixed-size stack buffer.

Buffer Overflow Denial Of Service Memory Corruption Stack Overflow IoT +1
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22213 CRITICAL POC Act Now

RIOT OS (IoT operating system) tapslip6 utility has a stack buffer overflow due to unbounded strcpy/strcat with user-controlled device name input. PoC available.

Buffer Overflow Denial Of Service Memory Corruption Stack Overflow IoT +1
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-25139
EPSS 0% CVSS 9.1
CRITICAL POC Act Now

RIOT IoT operating system has an out-of-bounds read vulnerability (CVSS 9.1) that could lead to information disclosure or crashes on IoT devices.

Denial Of Service IoT Riot
NVD GitHub
CVE-2026-22214
EPSS 0% CVSS 9.8
CRITICAL Act Now

RIOT OS ethos utility has a stack buffer overflow in _handle_char() due to missing bounds checking on serial frame data. Incoming frame bytes overflow a fixed-size stack buffer.

Buffer Overflow Denial Of Service Memory Corruption +3
NVD GitHub
CVE-2026-22213
EPSS 0% CVSS 9.8
CRITICAL POC Act Now

RIOT OS (IoT operating system) tapslip6 utility has a stack buffer overflow due to unbounded strcpy/strcat with user-controlled device name input. PoC available.

Buffer Overflow Denial Of Service Memory Corruption +3
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy