Vendor
high
advisory
CVE-2026-14606 — Stack-Based Buffer Overflow in RT-Thread CAN_Receive
1 CVEA stack-based buffer overflow vulnerability (CVE-2026-14606) exists in RT-Thread versions up to 5.0.2, specifically in the `CAN_Receive` function of the SWM341 CAN Handler component, allowing for local exploitation via manipulation, with a public exploit available.
RT-Thread <= 5.0.2
vulnerability
buffer-overflow
RT-Thread
IoT
ICS
embedded-systems
1c
high
advisory
CVE-2026-14605: RT-Thread Stack-based Buffer Overflow
1 TTP 1 CVEA stack-based buffer overflow vulnerability (CVE-2026-14605) exists in the `recvmsg` function of the `ls1c CAN Handler` component within RT-Thread up to version 5.0.2, requiring local access for exploitation and having a publicly available exploit, potentially leading to high impact on confidentiality, integrity, and availability.
RT-Thread
buffer-overflow
cve
local-exploitation
embedded-systems
1t
1c