25 matches found
CVE-2026-10651 Out-of-bounds read in Bluetooth Classic SDP attribute parsing (`bt_sdp_parse_attribute`)
btsdpparseattribute in subsys/bluetooth/host/classic/sdp.c validated only that the SDP record buffer held the type-marker byte plus the 2-byte attribute ID a check of buf-len data0 before its only bounds guard an ASSERTNOMSG that compiles out when CONFIGASSERT is disabled, the production default,...
CVE-2023-4424
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
EUVD-2020-2487
Malware in sbrugna...
EUVD-2023-54286
Malicious code in bioql PyPI...
EUVD-2023-59247
Malicious code in bioql PyPI...
CVE-2023-7060
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2024-6443
CVE-2024-6443 affects Zephyr RTOS in the UTF-8 utility function utf8_trunc (zephyr/lib/utils/utf8.c). The root cause is that last_byte_p can point to one byte before the string pointer when the input string is empty, causing an out-of-bounds read. Connected sources confirm the issue location and ...
Unpatched Zephyr OS Expose Devices to DoS Attacks via IP Spoofing
By Waqas Is your organisation using Zephyr OS? Patch and update it to the latest version now! This is a post from HackRead.com Read the original post: Unpatched Zephyr OS Expose Devices to DoS Attacks via IP Spoofing...
CVE-2023-7060
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2023-7060
CVE-2023-7060 affects Zephyr OS IP packet handling. The issue can cause external-interface IP packets with a source address of 127.0.01 (or destination address) to not be properly dropped, potentially impacting availability. Affected component: Zephyr OS networking/IP filtering; root cause: impro...
CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling
Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address...
PT-2024-15189 · Zephyr Os · Zephyr Os
Name of the Vulnerable Software and Affected Versions: Zephyr OS affected versions not specified Description: The issue concerns the handling of IP packets in Zephyr OS. Specifically, it does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.0.1 o...
CVE-2023-4424
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
Buffer overflow
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
CVE-2023-4424
CVE-2023-4424 affects Zephyr OS Bluetooth: a malicious BLE device can trigger a buffer overflow by sending malformed advertising packets, potentially causing DoS or remote code execution on the victim device. The issue is linked to the HCI Bluetooth controller path (le_advertising_report) and ste...
CVE-2023-4424 bt: hci: DoS and possible RCE
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
CVE-2023-4424 bt: hci: DoS and possible RCE
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS. a denial of service vulnerability exists in Zephyr v1.14 and later, which stems from an assertion that can be reached via a repeated LLCONNECTIONPARAMREQ. An attacker could exploit this vulnerability to cause a denial of service attack...