Forerunner 235 Firmware Security Vulnerabilities and Issues — Forerunner 235 Firmware CVE List

cve

CVE-2020-27483

Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter trusts the offset provided f...

9.9CVSS

9.4AI Score

0.003EPSS

2020-11-16 09:15 PM

24

cve

CVE-2020-27484

Garmin Forerunner 235 before 8.20 is affected by: Integer Overflow. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter fails to check for overflow w...

9.9CVSS

9.5AI Score

0.002EPSS

2020-11-16 09:15 PM

20

cve

CVE-2020-27485

Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter fails to check the index pro...

9.9CVSS

9AI Score

0.001EPSS

2020-11-16 09:15 PM

24

cve

CVE-2020-27486

Garmin Forerunner 235 before 8.20 is affected by: Buffer Overflow. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter trusts the string length provi...

9.9CVSS

9.3AI Score

0.001EPSS

2020-11-16 09:15 PM

23