CVE-2017-14201 The shell DNS command can cause unpredictable results due to misuse of stack variables.

2019-04-1900:00:00

CWE-416

zephyr

www.cve.org

0.004 Low

EPSS

Percentile

74.2%

JSON

Use After Free vulnerability in the Zephyr shell allows a serial or telnet connected user to cause denial of service, and possibly remote code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.

CNA Affected

[
  {
    "product": "shell",
    "vendor": "Zephyr",
    "versions": [
      {
        "status": "affected",
        "version": "prior to 1.14.0"
      }
    ]
  }
]