CVE-2025-55099 | Eclipse USBX up to 6.4.2 USB Support _ux_host_class_audio_alternate_setting_locate frequency out-of-bounds

October 17, 2025 Yanac

A vulnerability classified as problematic has been found in Eclipse USBX up to 6.4.2. Affected by this issue is the function _ux_host_class_audio_alternate_setting_locate of the component USB Support Module. The manipulation of the argument frequency leads to out-of-bounds read.

This vulnerability is documented as CVE-2025-55099. It is possible to launch the attack on the physical device. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More