Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-5688

We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.

Published

2025-06-04T17:15:29.330

Last Modified

2025-10-14T18:15:36.583

Status

Awaiting Analysis

Source

ff89ba41-3aa1-4d27-914a-91399e9639e5

Severity

Weaknesses

Type: Secondary
CWE-787

Affected Vendors & Products

References

https://aws.amazon.com/security/security-bulletins/AWS-2025-012/ (ff89ba41-3aa1-4d27-914a-91399e9639e5)
https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/releases/tag/V4.3.2 (ff89ba41-3aa1-4d27-914a-91399e9639e5)
https://github.com/FreeRTOS/FreeRTOS-Plus-TCP/security/advisories/GHSA-5x4f-fvv8-wr65 (ff89ba41-3aa1-4d27-914a-91399e9639e5)