CVE-2026-5589 | zephyrproject-rtos Zephyr up to 4.3.0 solicitation.c bt_mesh_sol_recv out-of-bounds write (GHSA-4pm9-4v7f-x6gr / EUVD-2026-34322)

A vulnerability classified as critical has been found in zephyrproject-rtos Zephyr up to 4.3.0. This affects the function bt_mesh_sol_recv of the file subsys/bluetooth/mesh/solicitation.c. Performing a manipulation results in out-of-bounds write.

This vulnerability is cataloged as CVE-2026-5589. The attack must originate from the local network. There is no exploit available.VulDB Recent EntriesRead More