24 matches found
CVE-2023-4424
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
EUVD-2020-2487
Malware in sbrugna...
EUVD-2023-59247
Malicious code in bioql PyPI...
EUVD-2023-54286
Malicious code in bioql PyPI...
CVE-2023-7060
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2024-6443
CVE-2024-6443 affects Zephyr RTOS in the UTF-8 utility function utf8_trunc (zephyr/lib/utils/utf8.c). The root cause is that last_byte_p can point to one byte before the string pointer when the input string is empty, causing an out-of-bounds read. Connected sources confirm the issue location and ...
Unpatched Zephyr OS Expose Devices to DoS Attacks via IP Spoofing
By Waqas Is your organisation using Zephyr OS? Patch and update it to the latest version now! This is a post from HackRead.com Read the original post: Unpatched Zephyr OS Expose Devices to DoS Attacks via IP Spoofing...
CVE-2023-7060
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2023-7060
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2023-7060
CVE-2023-7060 affects Zephyr OS IP packet handling. The issue can cause external-interface IP packets with a source address of 127.0.01 (or destination address) to not be properly dropped, potentially impacting availability. Affected component: Zephyr OS networking/IP filtering; root cause: impro...
CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
PT-2024-15189 · Zephyr Os · Zephyr Os
Name of the Vulnerable Software and Affected Versions: Zephyr OS affected versions not specified Description: The issue concerns the handling of IP packets in Zephyr OS. Specifically, it does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.0.1 o...
CVE-2023-4424
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
CVE-2023-4424
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
Buffer overflow
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
CVE-2023-4424
CVE-2023-4424 affects Zephyr OS Bluetooth: a malicious BLE device can trigger a buffer overflow by sending malformed advertising packets, potentially causing DoS or remote code execution on the victim device. The issue is linked to the HCI Bluetooth controller path (le_advertising_report) and ste...
CVE-2023-4424 bt: hci: DoS and possible RCE
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS. a denial of service vulnerability exists in Zephyr v1.14 and later, which stems from an assertion that can be reached via a repeated LLCONNECTIONPARAMREQ. An attacker could exploit this vulnerability to cause a denial of service attack...
Zephyr Input Validation Error Vulnerability (CNVD-2020-35963)
Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. An input validation error vulnerability exists in Zephyr version 2.2.0 and later fixed in version 2.3.0. An attacker can exploit this vulnerability to cause a denial of service with arbitrary CoAP...