Lucene search
K

25 matches found

CNNVD
CNNVD
added 2026/05/22 12:0 a.m.11 views

Zephyr 安全漏洞

Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. There is a security vulnerability in Zephyr, caused by a bit offset issue. A remote attacker can set an unvalidated negative value of logannounceinterval by sending a specially crafted PTPMSGMANAGEMENT message...

6.5CVSS5.8AI score0.00187EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.9 views

Zephyr 安全漏洞

Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. Versions of Zephyr prior to 4.3.0 contained security vulnerabilities. These vulnerabilities were caused by improper handling of the tail space in the buffer used by the dnsunpackname function, which could lead...

9.8CVSS5.9AI score0.00376EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/11/26 12:0 a.m.3 views

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr, which stems from the genprovstart function in pbadv.c copying incoming data to the link.rx.buf receive buffer without validating the data size, which could result in an...

7.6CVSS6.9AI score0.00177EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-26756

Malware in sbrugna...

7.5CVSS7.6AI score0.0083EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-26758

Malware in sbrugna...

7.5CVSS7.5AI score0.0083EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-26652

Malware in sbrugna...

8.8CVSS8.7AI score0.00736EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/10/03 12:0 a.m.4 views

PT-2024-37630 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue occurs in the utf8 trunc function found in zephyr/lib/utils/utf8.c, where last byte p might point to the byte just before the string pointer if the string is empty. This is a buffe...

6.5CVSS7.1AI score0.00583EPSS
Exploits1References9
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.2 views

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr version 3.6 and earlier, which stems from an incorrect discard routine causing a heap overflow in bthcileadvextreport in /subsys/bluetooth/host/scan.c. The vulnerability is...

7.6CVSS7AI score0.00608EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.3 views

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr version 3.6 and prior versions, which stems from a lack of checking the length of netbuf when processing data for the RFCOMM protocol, which could lead to a heap-based buffer...

6.8CVSS6.9AI score0.00433EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.3 views

Zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr 3.5 and earlier versions, which stems from the presence of a buffer overflow...

9.8CVSS7.1AI score0.00438EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/07/10 12:0 a.m.7 views

PT-2023-18442 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue allows any malicious Bluetooth controller to execute arbitrary code on the Zephyr host due to union variant confusion. Recommendations: At the moment, there is no information about...

8.8CVSS8.9AI score0.00432EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/01/19 12:0 a.m.3 views

zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in zephyr that stems from not properly checking inputs in lereadbuffersizecomplete, resulting in a denial of service...

9.6CVSS6.5AI score0.00471EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/06/28 12:0 a.m.6 views

PT-2022-10337 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr versions = v2.5.0 Description: A stack-based buffer overflow issue exists in the le ecred conn req function. This issue is related to a stack-based buffer overflow, which can be exploited. Recommendations: For Zephyr versions = v2.5.0,...

7.8CVSS8.1AI score0.00202EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/10/12 12:0 a.m.5 views

Zephyr 数字错误漏洞

Zephyr is a small real-time operating system for interconnected, resource-constrained embedded devices. an integer underflow vulnerability in 6LoWPAN IPHC header decompression in Zephyr 2.4.0 and later can be exploited by attackers to cause out-of-bounds access in the Pv6 parsing logic...

9.8CVSS5.7AI score0.00894EPSS
Exploits1References2
CNVD
CNVD
added 2021/06/25 12:0 a.m.6 views

Unspecified Vulnerability in Zephyr

Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. Zephyr has a security vulnerability that stems from improper handling of insufficient permissions or privileges in Zephyr. No details of the vulnerability are available at this time...

5.9CVSS6.9AI score0.00201EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/24 12:0 a.m.11 views

Zephyr buffer overflow vulnerability (CNVD-2021-44932)

Zephyr is an open source, small, scalable real-time operating system. A security vulnerability exists in Zephyr versions >= v1.14.2 and >= v2.2.0, which stems from a lack of size checking in Bluetooth HCI on SPI. No details of the vulnerability are available at this time...

8.8CVSS6.8AI score0.00486EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/26 12:0 a.m.10 views

Unspecified vulnerability in Zephyr (CNVD-2021-95624)

Zephyr is an open source, small, scalable real-time operating system. Zephyr suffers from a security vulnerability that stems from the fact that when setup in conjunction with littlefs, MCUmgr can be used to extract all security-related information from the device. No details of the vulnerability...

3.3CVSS6.5AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2021/05/25 5:15 p.m.6 views

CVE-2020-13602

Remote Denial of Service in LwM2M dowriteoptlv. Zephyr versions = 1.14.2, = 2.2.0 contain Improper Input Validation CWE-20, Loop with Unreachable Exit Condition 'Infinite Loop' CWE-835. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-g9mg-fj58-6fqh...

5.5CVSS5.5AI score0.00297EPSS
Exploits0References1
OSV
OSV
added 2021/05/25 5:15 p.m.4 views

CVE-2020-10065

Missing Size Checks in Bluetooth HCI over SPI. Zephyr versions = v1.14.2, = v2.2.0 contain Improper Handling of Length Parameter Inconsistency CWE-130. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hg2w-62p6-g67c...

8.8CVSS5.5AI score
Exploits0References1
CNVD
CNVD
added 2021/05/25 12:0 a.m.8 views

Zephyr Memory Corruption Vulnerability

Zephyr is a small real-time operating system for interconnected, resource-constrained embedded devices. A memory corruption vulnerability exists in Zephyr versions 1.14.2, 2.3.0. A local attacker can exploit this vulnerability by sending a malformed SPI response that corrupts kernel memory in the...

7.6CVSS7.2AI score0.0024EPSS
Exploits0References1
Rows per page
Query Builder