CVE-2026-7422 | AWS FreeRTOS-Plus-TCP up to 4.2.5/4.4.0 Loopback Detection authentication spoofing

Inserito da Angelo Barbosa | Apr 29, 2026 | CVE

A vulnerability identified as critical has been detected in AWS FreeRTOS-Plus-TCP up to 4.2.5/4.4.0. The affected element is an unknown function of the component Loopback Detection. Performing a manipulation results in authentication bypass by spoofing.

This vulnerability is identified as CVE-2026-7422. The attack can only be performed from the local network. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-7422 | AWS FreeRTOS-Plus-TCP up to 4.2.5/4.4.0 Loopback Detection authentication spoofing

Post correlati

CVE-2024-52958 | Galaxy Software Services iota C.ai Conversational Platform up to 2.1.3 Plugin Upload signature verification

VDB-260028 | unknown vulnerability

CVE-2025-33031 | QNAP File Station 5.5.6.4741/5.5.6.4791 certificate validation (qsa-25-16)

CVE-2025-65817 | LSC Smart Connect Indoor IP Camera 1.4.13 start_app.sh privilege escalation