Login Sign Up

CVE-2024-2212

7.3 HIGH

📋 TL;DR

CVE-2024-2212 is a heap buffer overflow vulnerability in Eclipse ThreadX's FreeRTOS compatibility layer. Missing parameter checks in xQueueCreate() and xQueueCreateSet() functions allow integer wraparound leading to memory corruption. This affects systems using Eclipse ThreadX with FreeRTOS compatibility API before version 6.4.0.

💻 Affected Systems

Products:
  • Eclipse ThreadX
Versions: All versions before 6.4.0
Operating Systems: Embedded systems using Eclipse ThreadX RTOS
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects systems using the FreeRTOS compatibility API (utility/rtos_compatibility_layers/FreeRTOS/)

📦 What is this software?

Threadx by Eclipse

View all CVEs affecting Threadx →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, denial of service, or data exfiltration

🟠

Likely Case

System crashes, denial of service, or memory corruption leading to unpredictable behavior

🟢

If Mitigated

Contained memory corruption with minimal impact if proper memory protections are enabled

🌐 Internet-Facing: MEDIUM - Requires specific conditions and API usage patterns to be exploitable remotely
🏢 Internal Only: MEDIUM - Could be exploited by malicious internal actors or through supply chain attacks

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires control over queue creation parameters and specific memory layout conditions

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 6.4.0

Vendor Advisory: https://github.com/eclipse-threadx/threadx/security/advisories/GHSA-v9jj-7qjg-h6g6

Restart Required: Yes

Instructions:

1. Update Eclipse ThreadX to version 6.4.0 or later. 2. Recompile all applications using the updated library. 3. Deploy updated firmware to affected devices.

🔧 Temporary Workarounds

Disable FreeRTOS Compatibility Layer

all

Remove or disable the vulnerable FreeRTOS compatibility API if not required

Remove references to utility/rtos_compatibility_layers/FreeRTOS/ from build configuration

Add Parameter Validation

all

Implement custom parameter validation for xQueueCreate() and xQueueCreateSet() calls

Add bounds checking before calling vulnerable functions

🧯 If You Can't Patch

  • Implement strict input validation for all queue creation parameters
  • Enable memory protection features like ASLR and stack canaries if supported by hardware

🔍 How to Verify

Check if Vulnerable:

Check if Eclipse ThreadX version is below 6.4.0 and if FreeRTOS compatibility API is used

Check Version:

Check build configuration or firmware version strings for ThreadX version information

Verify Fix Applied:

Verify Eclipse ThreadX version is 6.4.0 or later and review code for removed vulnerable functions

📡 Detection & Monitoring

Log Indicators:

  • Memory allocation failures
  • System crashes during queue operations
  • Unexpected process terminations

Network Indicators:

  • Unusual device behavior or communication patterns

SIEM Query:

Search for system logs containing memory corruption errors or unexpected reboots in embedded devices

📊 Metadata

CVE ID: CVE-2024-2212
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
CWE: CWE-122
Published: March 26, 2024
Last Updated: February 13, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-2212, you might also want to check these:

CVE-2021-21940 10.0

A heap-based buffer overflow vulnerability in Anker Eufy Homebase 2's RTSP handling allows remote co...

Same vulnerability type (CWE-122)
CVE-2023-45318 10.0

This critical vulnerability allows remote attackers to execute arbitrary code on systems running Wes...

Same vulnerability type (CWE-122)
CVE-2025-23123 10.0

A heap buffer overflow vulnerability in UniFi Protect Camera firmware allows remote code execution. ...

Same vulnerability type (CWE-122)