2 matches found
CVE-2020-10062
The vulnerability CVE-2020-10062 affects Zephyr RTOS MQTT packet length decoder (off-by-one) in Zephyr 2.2.0 and later. Root cause: off-by-one in the decoder leading to memory corruption and possible remote code execution. Impact: memory corruption with potential code execution. Remediation: fixe...
CVE-2020-10062 Packet length decoding error in MQTT
An off-by-one error in the Zephyr project MQTT packet length decoder can result in memory corruption and possible remote code execution. NCC-ZEP-031 This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions...