CVE-2025-10458
HIGHDescription
Parameters are not validated or sanitized, and are later used in various internal operations.
Is your site exposed to CVE-2025-10458?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| zephyrproject | zephyr |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-10458? +
How severe is CVE-2025-10458? +
What products are affected by CVE-2025-10458? +
How do I check if I'm vulnerable to CVE-2025-10458? +
Related Vulnerabilities
An attacker sending tcp, il, rudp, rudp, or gre packets with a length less than the header size would trigger …
An improper handling of the length parameter inconsistency vulnerability has been identified in Moxa’s Secure Router. Because of improper validation …
Improper bounds validation in EmberZNet SDK versions 9.0.2 and earlier may result in crashes or dynamic memory leakage.
rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, …
A flaw was found in OVN (Open Virtual Network). A remote attacker, by sending crafted DHCPv6 (Dynamic Host Configuration Protocol …
mouse07410/asn1c is an ASN.1 compiler. In 1.4 and earlier, a memory safety vulnerability was identified in the OER decoding skeleton …