CVE-2026-11576

Summary

The security fix for CVE-2025-0728 in eclipse-threadx NetX Duo refactors error handling in the HTTP server PUT process to use a shared cleanup label, but this unified cleanup path unconditionally calls fx_file_close() even when the file was never successfully opened. Multiple error branches jump to the shared cleanup label before any file open operation has occurred, causing fx_file_close() to operate on an uninitialized file handle, leading to undefined behavior, double-close issues, or memory corruption.

Affected Software

VendorProductVersion RangeStatus
Eclipse FoundationEclipse ThreadX - NetX Duo6.4.2 <= 6.5.0.202601affected

Weaknesses

  • CWE-415: CWE-415 Double free
  • CWE-459: CWE-459 Incomplete cleanup
  • CWE-908: CWE-908 Use of uninitialized resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References