{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/rt-thread-up-to-5.0.2/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.8,"id":"CVE-2026-14605"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["RT-Thread (up to 5.0.2)"],"_cs_severities":["high"],"_cs_tags":["rt-thread","buffer-overflow","cve","local-exploitation","embedded-systems"],"_cs_type":"advisory","_cs_vendors":["RT-Thread"],"content_html":"\u003cp\u003eA critical stack-based buffer overflow vulnerability, identified as CVE-2026-14605, has been discovered in RT-Thread, an open-source real-time operating system, affecting versions up to 5.0.2. The flaw resides specifically within the \u003ccode\u003erecvmsg\u003c/code\u003e function in the \u003ccode\u003ebsp/loongson/ls1cdev/libraries/ls1c_can.h\u003c/code\u003e library, part of the \u003ccode\u003els1c CAN Handler\u003c/code\u003e component. Exploitation of this vulnerability necessitates local access to the affected system, meaning an attacker must already have a foothold on the device. A public exploit for this vulnerability is available, increasing the likelihood of its use by malicious actors. The vendor, RT-Thread, was contacted regarding this disclosure but has not provided a response, leaving affected systems at risk. This vulnerability poses a significant threat to the confidentiality, integrity, and availability of systems utilizing affected RT-Thread versions.\u003c/p\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eThe successful exploitation of CVE-2026-14605, a stack-based buffer overflow, could lead to a complete compromise of the affected RT-Thread system. With high impact on confidentiality, integrity, and availability (CVSS 3.1 Base Score 7.8), attackers could potentially execute arbitrary code with elevated privileges, gain full control over the embedded device, or cause system instability and denial of service. Since RT-Thread is commonly used in embedded systems and IoT devices, successful exploitation could have severe consequences ranging from data exfiltration and intellectual property theft to physical disruption of critical infrastructure or industrial control systems.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImmediately patch or update RT-Thread installations to a version beyond 5.0.2 to remediate CVE-2026-14605.\u003c/li\u003e\n\u003cli\u003eRestrict local access to all devices running affected RT-Thread versions as exploitation of CVE-2026-14605 requires local access.\u003c/li\u003e\n\u003cli\u003eMonitor for any unusual activity or process behavior on devices running RT-Thread, especially after any local access event, given the public availability of an exploit for CVE-2026-14605.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-07-03T20:23:58Z","date_published":"2026-07-03T20:23:58Z","id":"https://feed.craftedsignal.io/briefs/2026-07-cve-2026-14605-rt-thread-bo/","summary":"A stack-based buffer overflow vulnerability (CVE-2026-14605) exists in the `recvmsg` function of the `ls1c CAN Handler` component within RT-Thread up to version 5.0.2, requiring local access for exploitation and having a publicly available exploit, potentially leading to high impact on confidentiality, integrity, and availability.","title":"CVE-2026-14605: RT-Thread Stack-based Buffer Overflow","url":"https://feed.craftedsignal.io/briefs/2026-07-cve-2026-14605-rt-thread-bo/"}],"language":"en","title":"CraftedSignal Threat Feed - RT-Thread (Up to 5.0.2)","version":"https://jsonfeed.org/version/1.1"}