25 matches found
Zephyr 安全漏洞
Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. There is a security vulnerability in Zephyr, caused by a bit offset issue. A remote attacker can set an unvalidated negative value of logannounceinterval by sending a specially crafted PTPMSGMANAGEMENT message...
Zephyr 安全漏洞
Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. Versions of Zephyr prior to 4.3.0 contained security vulnerabilities. These vulnerabilities were caused by improper handling of the tail space in the buffer used by the dnsunpackname function, which could lead...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr, which stems from the genprovstart function in pbadv.c copying incoming data to the link.rx.buf receive buffer without validating the data size, which could result in an...
EUVD-2021-26758
Malware in sbrugna...
EUVD-2021-26756
Malware in sbrugna...
EUVD-2021-26652
Malware in sbrugna...
PT-2024-37630 · Zephyr · Zephyr
Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue occurs in the utf8 trunc function found in zephyr/lib/utils/utf8.c, where last byte p might point to the byte just before the string pointer if the string is empty. This is a buffe...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr version 3.6 and earlier, which stems from an incorrect discard routine causing a heap overflow in bthcileadvextreport in /subsys/bluetooth/host/scan.c. The vulnerability is...
Zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr version 3.6 and prior versions, which stems from a lack of checking the length of netbuf when processing data for the RFCOMM protocol, which could lead to a heap-based buffer...
Zephyr Security Breach
Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr 3.5 and earlier versions, which stems from the presence of a buffer overflow...
PT-2023-18442 · Zephyr · Zephyr
Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue allows any malicious Bluetooth controller to execute arbitrary code on the Zephyr host due to union variant confusion. Recommendations: At the moment, there is no information about...
zephyr 安全漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in zephyr that stems from not properly checking inputs in lereadbuffersizecomplete, resulting in a denial of service...
PT-2022-10337 · Zephyr · Zephyr
Name of the Vulnerable Software and Affected Versions: Zephyr versions = v2.5.0 Description: A stack-based buffer overflow issue exists in the le ecred conn req function. This issue is related to a stack-based buffer overflow, which can be exploited. Recommendations: For Zephyr versions = v2.5.0,...
Zephyr 数字错误漏洞
Zephyr is a small real-time operating system for interconnected, resource-constrained embedded devices. an integer underflow vulnerability in 6LoWPAN IPHC header decompression in Zephyr 2.4.0 and later can be exploited by attackers to cause out-of-bounds access in the Pv6 parsing logic...
Unspecified Vulnerability in Zephyr
Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. Zephyr has a security vulnerability that stems from improper handling of insufficient permissions or privileges in Zephyr. No details of the vulnerability are available at this time...
Zephyr buffer overflow vulnerability (CNVD-2021-44932)
Zephyr is an open source, small, scalable real-time operating system. A security vulnerability exists in Zephyr versions >= v1.14.2 and >= v2.2.0, which stems from a lack of size checking in Bluetooth HCI on SPI. No details of the vulnerability are available at this time...
Unspecified vulnerability in Zephyr (CNVD-2021-95624)
Zephyr is an open source, small, scalable real-time operating system. Zephyr suffers from a security vulnerability that stems from the fact that when setup in conjunction with littlefs, MCUmgr can be used to extract all security-related information from the device. No details of the vulnerability...
CVE-2020-13602
Remote Denial of Service in LwM2M dowriteoptlv. Zephyr versions = 1.14.2, = 2.2.0 contain Improper Input Validation CWE-20, Loop with Unreachable Exit Condition 'Infinite Loop' CWE-835. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-g9mg-fj58-6fqh...
CVE-2020-10065
Missing Size Checks in Bluetooth HCI over SPI. Zephyr versions = v1.14.2, = v2.2.0 contain Improper Handling of Length Parameter Inconsistency CWE-130. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hg2w-62p6-g67c...
Zephyr Out-of-Bounds Read Vulnerability
Zephyr is a small real-time operating system for connected, resource-constrained embedded devices. A security vulnerability exists in Zephyr versions = 1.14.2 and = 2.3.0. An attacker could exploit this vulnerability to achieve remote code execution...