CVE-2026-7426 | AWS FreeRTOS-Plus-TCP up to 4.2.5/4.4.0 Router Advertisement length out-of-bounds write (GHSA-97qg-4359-xm3x)

A vulnerability, which was classified as critical, has been found in AWS FreeRTOS-Plus-TCP up to 4.2.5/4.4.0. Affected by this issue is some unknown functionality of the component Router Advertisement Handler. Performing a manipulation of the argument length results in out-of-bounds write.

This vulnerability is reported as CVE-2026-7426. The attacker must have access to the local network to execute the attack. No exploit exists.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More