Lucene search
K

Buffer Overflow vulnerability in the net/bootp.c in DENEX U-Boot from its initial commit in 2002 (3861aa5) up to today on any platform allows an attacker on the local network to leak memory from four up to 32 bytes of memory stored behind the packet to the network depending on the later use of DHCP-provided parameters via crafted DHCP responses.

🗓️ 04 Sep 2025 05:46:46Reported by MicrosoftType 
mscve
 mscve
🔗 msrc.microsoft.com👁 3 Views

Buffer overflow in DENX U-Boot net/bootp.c allows local attacker to leak 4 to 32 bytes via crafted DHCP responses.

Related
ReporterTitlePublishedViews
Family
AlpineLinux
CVE-2024-42040
23 Aug 202400:00
alpinelinux
Circl
CVE-2024-42040
23 Aug 202417:58
circl
CNNVD
DENX Software Engineering Das U-Boot 安全漏洞
23 Aug 202400:00
cnnvd
CVE
CVE-2024-42040
23 Aug 202400:00
cve
Cvelist
CVE-2024-42040
23 Aug 202400:00
cvelist
Debian
[SECURITY] [DLA 4642-1] u-boot security update
23 Jun 202621:22
debian
Debian CVE
CVE-2024-42040
23 Aug 202400:00
debiancve
Tenable Nessus
Debian dla-4642 : u-boot - security update
24 Jun 202600:00
nessus
Tenable Nessus
Ubuntu 22.04 LTS / 24.04 LTS : U-Boot vulnerabilities (USN-8056-1)
23 Feb 202600:00
nessus
Tenable Nessus
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: uboot-tools (UTSA-2026-016520)
7 May 202600:00
nessus
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Sep 2025 05:46Current
7High risk
Vulners AI Score7
CVSS 3.18.1
EPSS0.00598
SSVC
3