CVE-2025-5688

HIGH

LLMNR/mDNS - Buffer Overflow

Title source: llm

Description

We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.

Exploits (1)

nomisec WORKING POC

by mbanyamer · poc

https://github.com/mbanyamer/CVE-2025-5688-FreeRTOS-Plus-TCP-Out-of-Bounds-Write

View Code ZIP pw:eip

References (3)

[Various Sources] https://aws.amazon.com/security/security-bulletins/AWS-2025-012/

[Vendor Advisory] https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/security/advisories/GHSA-5x4f-fvv8-wr65

[Release Notes] https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/releases/tag/V4.3.2

Scores

CVSS v4 7.5

EPSS 0.0011

EPSS Percentile 29.0%

CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Details

CWE

CWE-787

Status published

Products (1)

Amazon/FreeRTOS 2.3.4 - 4.3.2

Published Jun 04, 2025

Tracked Since Feb 18, 2026