CVE-2026-14629
Received
Received - Intake
Divide by Zero in RT-Thread Parameter Handler
Vulnerability report for CVE-2026-14629, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-07-04
Last updated on: 2026-07-04
Assigner: VulDB
Description
Description
A flaw has been found in RT-Thread up to 5.2.2. Affected is the function read/write/sys_ioctl of the file components/lwp/lwp_syscall.c of the component Parameter Handler. Executing a manipulation can lead to divide by zero. The attack may be launched remotely. The exploit has been published and may be used. The pull request to fix this issue awaits acceptance.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| rt-thread | rt-thread | to 5.2.2 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-369 | The product divides a value by zero. |
| CWE-404 | The product does not release or incorrectly releases a resource before it is made available for re-use. |