CVE-2026-14629

Source
https://cve.org/CVERecord?id=CVE-2026-14629
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-14629.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-14629
Published
2026-07-04T13:15:08.868Z
Modified
2026-07-15T01:49:20.949563725Z
Severity
  • 2.1 (Low) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P CVSS Calculator
Summary
RT-Thread Parameter lwp_syscall.c sys_ioctl divide by zero
Details

A flaw has been found in RT-Thread up to 5.2.2. Affected is the function read/write/sysioctl of the file components/lwp/lwpsyscall.c of the component Parameter Handler. Executing a manipulation can lead to divide by zero. The attack may be launched remotely. The exploit has been published and may be used. The pull request to fix this issue awaits acceptance.

Database specific
{
    "cwe_ids": [
        "CWE-369",
        "CWE-404"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/14xxx/CVE-2026-14629.json",
    "cna_assigner": "VulDB"
}
References

Affected packages

Git / github.com/rt-thread/rt-thread

Affected ranges

Type
GIT
Repo
https://github.com/rt-thread/rt-thread
Events
Database specific
{
    "extracted_events": [
        {
            "introduced": "5.2.0"
        },
        {
            "last_affected": "5.2.0"
        },
        {
            "introduced": "5.2.1"
        },
        {
            "last_affected": "5.2.1"
        },
        {
            "introduced": "5.2.2"
        },
        {
            "last_affected": "5.2.2"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

5.*
5.2.0
5.2.1
5.2.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-14629.json"