A vulnerability labeled as problematic has been found in zephyrproject-rtos Zephyr up to 4.4 . Affected is the function ext2_fetch_direntry of the file subsys/fs/ext2/ext2_diskops.c . Executing a manipulation can lead to out-of-bounds read. The identification of this vulnerability is CVE-2026-10645 . The physical device can be targeted for the attack. There is no exploit available.