A vulnerability was found in Amazon AWS FreeRTOS-Plus-TCP up to 4.3.3. It has been rated as critical. The affected element is an unknown function of the component ICMPv6 Packet Processor. The manipulation leads to buffer over-read.

This vulnerability is documented as CVE-2025-11616. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.