Zephyr 安全漏洞

Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. There is a security vulnerability in Zephyr, which stems from memory corruption in the WebSocket upgrade path of the HTTP server. This vulnerability could allow remote, unauthenticated attackers to trigger...

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr that stems from an integer overflow in the btbraclrecv routine, which could lead to problems when processing BR/EDR L2CAP traffic...

EUVD-2018-2004

Malware in sbrugna...

EUVD-2020-2486

Malware in sbrugna...

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr 4.1 and earlier versions, which stems from a flawed DNS implementation that could lead to an infinite loop...

CVE-2018-1000800

zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in sysringbufput, sysringbufget that can result in CPU Page Fault error code 0x00000010. This attack appear to be exploitable via a malicious application call the vulnerable kernel APIs system sysringbufget and...

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr 3.7 and earlier versions that stems from improper validation of user input by the olcpindhandler function...

Zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr that stems from the inability to properly drop IP packets arriving at an external interface at source address 127.0.01 or destination address...

zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in zephyr 3.5 and earlier versions, which stems from a signed to unsigned conversion issue in esp32ipmsend...

Zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr 3.4 and prior versions that stems from the fact that sending a malformed advertisement packet can cause a buffer overflow, which can lead to a denial of service or...

Zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr IPM that stems from the presence of a buffer overflow issue...

Zephyr 缓冲区错误漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr 3.3 and earlier versions that stems from not clearing global references to semaphores after synchronously sending HCI commands, which could allow a malicious HCI...

CVE-2020-10071

The Zephyr MQTT parsing code performs insufficient checking of the length field on publish messages, allowing a buffer overflow and potentially remote code execution. NCC-ZEP-031 This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions...

Memory corruption

An off-by-one error in the Zephyr project MQTT packet length decoder can result in memory corruption and possible remote code execution. NCC-ZEP-031 This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions...

CVE-2020-10028

Multiple syscalls with insufficient argument validation See NCC-ZEP-006 This issue affects: zephyrproject-rtos zephyr version 1.14.0 and later versions. version 2.1.0 and later versions...

CVE-2020-10058

Multiple syscalls in the Kscan subsystem perform insufficient argument validation, allowing code executing in userspace to potentially gain elevated privileges. See NCC-ZEP-006 This issue affects: zephyrproject-rtos zephyr version 2.1.0 and later versions...

CVE-2020-10028 Multiple Syscalls In GPIO Subsystem Performs No Argument Validation

Multiple syscalls with insufficient argument validation See NCC-ZEP-006 This issue affects: zephyrproject-rtos zephyr version 1.14.0 and later versions. version 2.1.0 and later versions...

CVE-2018-1000800

zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in sysringbufput, sysringbufget that can result in CPU Page Fault error code 0x00000010. This attack appear to be exploitable via a malicious application call the vulnerable kernel APIs system sysringbufget and...

Null pointer dereference

zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in sysringbufput, sysringbufget that can result in CPU Page Fault error code 0x00000010. This attack appear to be exploitable via a malicious application call the vulnerable kernel APIs system sysringbufget and...

CVE-2018-1000800

zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in sysringbufput, sysringbufget that can result in CPU Page Fault error code 0x00000010. This attack appear to be exploitable via a malicious application call the vulnerable kernel APIs system sysringbufget and...