Lucene search
+L

14 matches found

osv
osv
added 4 days ago3 views

CVE-2026-10666 Stack buffer overflow in `net_ipaddr_parse()` IPv4 address-with-port parsing in `subsys/net/ip/utils.c`

parseipv4 in subsys/net/ip/utils.c reached via netipaddrparse for strings of the form "a.b.c.d:port" copies the port substring into a fixed 17-byte stack buffer char ipaddrNETIPV4ADDRLEN + 1 using a length of strlen - end - 1, where strlen is the full, unbounded input length and end is only the...

8.1CVSS6.2AI score0.00346EPSS
Exploits0References6
redhatcve
redhatcve
added 2026/03/29 11:3 p.m.5 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.8CVSS6.1AI score0.00215EPSS
Exploits1References1
nvd
nvd
added 2026/03/28 12:16 a.m.4 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.8CVSS0.00215EPSS
Exploits1References1
euvd
euvd
added 2026/03/27 11:21 p.m.4 views

EUVD-2026-16903

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References1
cve
cve
added 2026/03/27 11:21 p.m.28 views

CVE-2026-1679

The CVE-2026-1679 issue affects the eswifi socket offload driver, where the driver copies user-provided payloads into a fixed-size buffer without validating available space. This can cause a buffer overflow of eswifi->buf when oversized sends occur, leading to kernel memory corruption (CWE-120...

7.8CVSS6.1AI score0.00215EPSS
Exploits1References1Affected Software1
attackerkb
attackerkb
added 2026/03/27 11:21 p.m.3 views

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References2
cvelist
cvelist
added 2026/03/27 11:21 p.m.28 views

CVE-2026-1679 net: eswifi socket send payload length not bounded

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS0.00215EPSS
Exploits1References1
osv
osv
added 2026/03/27 11:21 p.m.4 views

CVE-2026-1679 net: eswifi socket send payload length not bounded

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.2AI score0.00215EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2026/03/27 11:21 p.m.11 views

CVE-2026-1679 net: eswifi socket send payload length not bounded

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; oversized sends overflow eswifi-buf, corrupting kernel memory CWE-120. Exploit requires local code that can call the socket send API; no remote attacker can reach it directly...

7.3CVSS6.1AI score0.00215EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2026/03/27 12:0 a.m.7 views

PT-2026-28314

Name of the Vulnerable Software and Affected Versions eswifi affected versions not specified Description The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space. Oversized sends can overflow eswifi-buf, leading to kernel memory corruptio...

7.3CVSS6.2AI score0.00215EPSS
Exploits1References7
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5845

Malware in sbrugna...

7.6CVSS7.6AI score0.0024EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/09/25 12:0 a.m.5 views

Zephyr Security Breach

Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr 3.4.0 and earlier versions, which originates from a buffer overflow in /drivers/wifi/eswifi/eswificore.c and /drivers/wifi/eswifi/eswifishell.c in the eS-WiFi driv...

8.8CVSS7.3AI score0.00713EPSS
Exploits1References3
osv
osv
added 2021/05/25 5:15 p.m.6 views

CVE-2020-13600

Malformed SPI in response for eswifi can corrupt kernel memory. Zephyr versions = 1.14.2, = 2.3.0 contain Heap-based Buffer Overflow CWE-122. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hx4p-j86p-2mhr...

7.6CVSS5.5AI score0.0024EPSS
Exploits0References1
cvelist
cvelist
added 2021/05/24 9:40 p.m.25 views

CVE-2020-13600 Malformed SPI in response for eswifi can corrupt kernel memory

Malformed SPI in response for eswifi can corrupt kernel memory. Zephyr versions = 1.14.2, = 2.3.0 contain Heap-based Buffer Overflow CWE-122. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hx4p-j86p-2mhr...

7CVSS7.5AI score0.0024EPSS
Exploits0References1
Rows per page
Query Builder