FreeRTOS and coreSNTP Security Advisories
Published Sat, May 10th, 2025
Platforms
Summary
Security advisories were issued for FreeRTOS and coreSNTP releases containing unintended scripts that could potentially transmit AWS credentials if executed on Linux/macOS. Affected releases have been removed and users are advised to rotate credentials and delete downloaded copies.
Affected Services
FreeRTOS, coreSNTP
Remediation
Delete affected release files. Rotate AWS credentials in ~/.aws/credentials. Contact AWS Support if needed.
Tracked CVEs
No tracked CVEs
References
Contributed by https://github.com/korniko98
Entry Status
Stub (AI-Generated)
Disclosure Date
-
Exploitability Period
Until 2025/05/08
Known ITW Exploitation
-
Detection Methods
Check SHA256 hashes of downloaded FreeRTOS/coreSNTP release files against those listed in the advisories.
Piercing Index Rating
-
Discovered by
sweeneyirrigreen
