CVE-2026-4737 PUBLISHED

Use-After-Free Vulnerability in No-Chicken/Echo-Mate

Assigner: GovTech CSG
Reserved: 24.03.2026 Published: 24.03.2026 Updated: 24.03.2026

Use After Free vulnerability in No-Chicken Echo-Mate (‎SDK/rv1106-sdk/sysdrv/source/kernel/mm modules). This vulnerability is associated with program files rmap.C‎.

This issue affects Echo-Mate: before V250329.

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P/S:N/AU:N/R:U/V:D/RE:L/U:Amber
CVSS Score: 7.3

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	High
Attack Complexity	High	Integrity	High	Integrity	High
Attack Requirements	None	Availability	High	Availability	High
Privileges Required	Low
User Interaction	None

CVSS 4.0

Product Status

Vendor	No-Chicken
Product	Echo-Mate
Versions	Default: affected affected from 0 to V250329 (excl.)

Credits

TITAN Team (titancaproject@gmail.com) reporter

References

https://github.com/No-Chicken/Echo-Mate/pull/9

Problem Types

CWE-416 Use After Free CWE