Buffer Overflow in RIOT-OS Internet of Things Operating System
CVE-2025-53888

6.6MEDIUM

Key Information:

Vendor: Riot-os
Status: Riot
Vendor: CVE Published:; 18 July 2025

What is CVE-2025-53888?

The RIOT-OS operating system for IoT devices has a vulnerability stemming from an ineffective size check implemented with assert(), leading to a potential buffer overflow. In the l2filter_add() function, the length of an address (addr_len) is only validated using an assertion. When assertions are disabled in production settings, this check is bypassed, allowing attackers to exploit input limitations. If an attacker provides an addr_len larger than CONFIG_L2FILTER_ADDR_MAXLEN, they could trigger a buffer overflow that may lead to a denial of service or arbitrary code execution. A patch addressing this vulnerability has been released.

Affected Version(s)

RIOT <= 2025.04

References

https://github.com/RIOT-OS/RIOT/security/advisories/GHSA-...

x_refsource_CONFIRM

https://github.com/RIOT-OS/RIOT/commit/f6f7de4ccc107c0186...

x_refsource_MISC

https://github.com/RIOT-OS/RIOT/blob/2025.04/sys/net/link...

x_refsource_MISC

CVSS V4

Score:

6.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 18, 2025
Vulnerability Reserved
Jul 11, 2025

Riot-os

What is CVE-2025-53888?

Affected Version(s)

References

CVSS V4

Timeline