CVE-2025-56363 in Matter
Summary
by MITRE • 07/15/2026
A null pointer dereference vulnerability exists in the Matter SDK (connectedhomeip) before 1.4.0, affecting the ReadRevisionAttribute function used in multiple clusters (Channel, Account Login, TargetNavigator, etc.). The function lacks proper validation of the delegate pointer before dereferencing. A remote unauthenticated attacker can exploit this issue by sending a crafted read request, causing the device to crash (denial of service). This issue has been confirmed in SDK version v1.4 (commit ab3d5ae).
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Analysis
by VulDB Data Team • 07/15/2026
The null pointer dereference vulnerability in the Matter SDK represents a critical security flaw that undermines the stability and reliability of connected home devices implementing the Matter protocol. This vulnerability specifically affects the ReadRevisionAttribute function across multiple clusters including Channel, Account Login, and TargetNavigator, indicating a systemic issue within the SDK's attribute handling mechanisms. The flaw exists in versions prior to 1.4.0 and has been confirmed in SDK version v1.4 with commit ab3d5ae, demonstrating that this weakness has persisted for significant periods within the software lifecycle.
The technical root cause of this vulnerability stems from insufficient input validation within the ReadRevisionAttribute function where the delegate pointer is not properly verified before being dereferenced. This type of flaw falls under CWE-476 which specifically addresses null pointer dereference conditions in software implementations. The absence of proper null checks creates an exploitable condition where an attacker can manipulate the function's execution path by sending malicious read requests to the device. The delegate pointer validation failure represents a fundamental security oversight that allows unauthorized manipulation of the device's memory access patterns.
From an operational perspective, this vulnerability presents a significant denial of service risk that can be exploited by remote unauthenticated attackers without requiring any special privileges or credentials. The ability to crash devices through crafted read requests fundamentally compromises the availability of connected home services and renders affected devices inoperable until manual intervention or system restart occurs. This type of attack vector aligns with ATT&CK technique T1499.004 which covers network denial of service attacks, and specifically targets the availability component of the CIA triad by disrupting normal device operations.
The impact extends beyond simple device crashes as it affects the broader Matter ecosystem where multiple clusters are simultaneously vulnerable, suggesting that attackers can potentially compromise various device functionalities through a single exploit vector. This interconnected nature of the vulnerability means that a successful attack could affect multiple device services and capabilities, from channel selection to account management and navigation functions. The remote exploitation capability eliminates the need for physical access or network proximity, making this vulnerability particularly dangerous in deployed IoT environments where devices may be exposed to untrusted networks.
Mitigation strategies should prioritize immediate patching of affected SDK versions to 1.4.0 or later where the vulnerability has been addressed through proper delegate pointer validation. Organizations implementing Matter-based solutions must conduct comprehensive inventory assessments to identify all devices running vulnerable SDK versions and implement remediation procedures. Network segmentation and access controls can provide additional defense in depth layers to limit potential attack surfaces, while monitoring systems should be deployed to detect anomalous read request patterns that could indicate exploitation attempts. Security teams should also consider implementing automated patch management processes to ensure timely deployment of security updates across all Matter-enabled devices within their infrastructure.