Lucene search
K

19 matches found

NVD
NVD
added 2 days ago8 views

CVE-2026-9263

The Zephyr Bluetooth controller ISO Adaptation Layer subsys/bluetooth/controller/llsw/isoal.c fails to validate the length field of a framed ISO PDU start segment. Per the Bluetooth specification a start segment sc=0 always carries a 3-byte timeoffset, so its segment-header len must be at least...

6.5CVSS0.00172EPSS
Exploits0References2
NVD
NVD
added 2 days ago7 views

CVE-2026-10654

A race condition in the Zephyr Bluetooth Classic RFCOMM host stack subsys/bluetooth/host/classic/rfcomm.c mishandles a simultaneous bidirectional session disconnect. When the local device has initiated a session teardown state BTRFCOMMSTATEDISCONNECTING, DISC sent, RTX timer armed and the connect...

3.1CVSS0.00124EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/17 1:14 p.m.13 views

CVE-2026-10641 Out-of-bounds write in Bluetooth HFP Hands-Free CIND indicator parsing (cind_handle_values)

Zephyr's Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser subsys/bluetooth/host/classic/hfphf.c contains an out-of-bounds write. During Service Level Connection setup the HF sends AT+CIND=? and parses the AG's +CIND: response in cindhandle, which assigns a per-entry counter index a...

7.1CVSS0.00282EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-2534

Malware in sbrugna...

6.5CVSS6.5AI score0.00381EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-24389

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00771EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-54135

Malicious code in bioql PyPI...

9.6CVSS9.2AI score0.00901EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/02/13 7:33 p.m.12 views

CVE-2023-4264

Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem...

9.6CVSS7.6AI score0.00901EPSS
Exploits1
OSV
OSV
added 2024/12/16 12:15 a.m.5 views

CVE-2024-8798

No proper validation of the length of user input in olcpindhandler in zephyr/subsys/bluetooth/services/ots/otsclient.c...

6.5CVSS5.5AI score0.00393EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/03/07 12:0 a.m.5 views

The vulnerability in the /subsys/bluetooth/host/hci_core.c component of the real-time Bluetooth subsystem of the Zephyr operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability in the /subsys/bluetooth/host/hcicore.c component of the real-time Bluetooth subsystem of the Zephyr operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

8.8CVSS6.6AI score0.00867EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2023/09/27 3:19 p.m.3 views

CVE-2023-4264

Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem...

9.6CVSS5.8AI score0.00901EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/09/26 6:34 p.m.3 views

CVE-2023-4264 Potential buffer overflow vulnerabilities in the Zephyr Bluetooth subsystem

Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem...

7.1CVSS8.7AI score0.00901EPSS
Exploits1References4
OSV
OSV
added 2022/07/26 5:15 a.m.5 views

CVE-2022-1041

In Zephyr bluetooth mesh core stack, an out-of-bound write vulnerability can be triggered during provisioning...

8.8CVSS5.5AI score0.00822EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/07/26 12:0 a.m.4 views

PT-2022-13613 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: An out-of-bound write issue can be triggered in the Zephyr bluetooth mesh core stack during provisioning. Recommendations: At the moment, there is no information about a newer version that...

8.8CVSS8.6AI score0.00771EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/07/26 12:0 a.m.5 views

PT-2022-13612 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: An out-of-bound write issue can be triggered in the Zephyr bluetooth mesh core stack during provisioning. Recommendations: At the moment, there is no information about a newer version that...

8.8CVSS8.6AI score0.00822EPSS
Exploits1References4
OSV
OSV
added 2021/05/25 5:15 p.m.6 views

CVE-2020-10069

Zephyr Bluetooth unchecked packet data results in denial of service. Zephyr versions = v1.14.2, = v2.2.0 contain Improper Handling of Parameters CWE-233. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-f6vh-7v4x-8fjp...

6.5CVSS5.5AI score0.00381EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/05/24 9:40 p.m.25 views

CVE-2020-10069 Zephyr Bluetooth unchecked packet data results in denial of service

Zephyr Bluetooth unchecked packet data results in denial of service. Zephyr versions = v1.14.2, = v2.2.0 contain Improper Handling of Parameters CWE-233. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-f6vh-7v4x-8fjp...

4.3CVSS6.5AI score0.00381EPSS
Exploits0References1
OSV
OSV
added 2020/06/05 6:15 p.m.5 views

CVE-2020-10068

In the Zephyr project Bluetooth subsystem, certain duplicate and back-to-back packets can cause incorrect behavior, resulting in a denial of service. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions...

6.5CVSS5.5AI score0.00491EPSS
Exploits0References6
Prion
Prion
added 2020/06/05 6:15 p.m.18 views

Memory corruption

Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in memory corruption. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions...

5.8CVSS8.6AI score0.00603EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2020/06/05 5:37 p.m.21 views

CVE-2020-10061 Error handling invalid packet sequence

Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in memory corruption. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions...

8.1CVSS8.7AI score0.00603EPSS
Exploits0References6
Rows per page
Query Builder