Lucene search
K

106 matches found

CVE
CVE
added 2025/06/16 11:0 a.m.65 views

CVE-2025-47869

CVE-2025-47869 affects Apache NuttX RTOS, specifically the apps/examples/xmlrpc component. A device stats structure stored remotely provided parameters using hardcoded buffers can lead to a buffer overflow. The buffers were corrected to CONFIG_XMLRPC_STRINGSIZE+1 in the release 12.9.0 example, af...

9.8CVSS6.7AI score0.00625EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/06/16 11:0 a.m.3 views

CVE-2025-47869 Apache NuttX RTOS: examples/xmlrpc: Fix calls buffers size.

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability was discovered in Apache NuttX RTOS apps/exapmles/xmlrpc application. In this example application device stats structure that stored remotely provided parameters had hardcoded buffer size which could lead to...

9.8CVSS7.7AI score0.00625EPSS
Exploits0References5
OSV
OSV
added 2025/06/16 11:0 a.m.5 views

CVE-2025-47868 Apache NuttX RTOS: tools/bdf-converter.: tools/bdf-converter: Fix loop termination condition.

Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active...

9.8CVSS7.1AI score0.00625EPSS
Exploits0References5
CVE
CVE
added 2025/06/16 11:0 a.m.48 views

CVE-2025-47868

The CVE concerns Apache NuttX’s optional tools/bdf-converter in the repository, which suffers an out-of-bounds write that can cause a heap-based buffer overflow. Affected versions are 6.9 through 12.9.0; the issue arises when the tool is exposed to externally provided data. The advisory recommend...

9.8CVSS6.5AI score0.00625EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/16 11:0 a.m.4 views

CVE-2025-47868 Apache NuttX RTOS: tools/bdf-converter.: tools/bdf-converter: Fix loop termination condition.

Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active...

9.6AI score0.00625EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/16 11:0 a.m.13 views

CVE-2025-47868 Apache NuttX RTOS: tools/bdf-converter.: tools/bdf-converter: Fix loop termination condition.

Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active...

0.00625EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/16 12:0 a.m.7 views

Apache NuttX 安全漏洞

Apache NuttX is a real-time embedded operating system from the Apache USA Foundation. A security vulnerability exists in Apache NuttX versions prior to 6.9 through 12.9.0, which stems from an out-of-bounds write that could result in a heap buffer overflow...

9.8CVSS7.1AI score0.00625EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/06/16 12:0 a.m.5 views

Apache NuttX 安全漏洞

Apache NuttX is a real-time embedded operating system from the Apache Foundation. A buffer overflow vulnerability exists in Apache NuttX versions prior to 6.22 through 12.9.0, which stems from an application boundary error when handling untrusted input and can be exploited by an attacker to cause...

9.8CVSS7.3AI score0.00625EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/14 12:0 a.m.5 views

PT-2025-25489 · Apache · Apache Nuttx

Name of the Vulnerable Software and Affected Versions: Apache NuttX versions 6.9 through 12.9.0 Description: An Out-of-bounds Write resulting in a possible Heap-based Buffer Overflow issue was discovered in the tools/bdf-converter font conversion utility, which is part of the Apache NuttX RTOS...

10CVSS6.4AI score0.00625EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/06/14 12:0 a.m.8 views

PT-2025-25490 · Apache · Apache Nuttx Rtos

Name of the Vulnerable Software and Affected Versions: Apache NuttX RTOS versions 6.22 through 12.9.0 Description: An issue was discovered in the Apache NuttX RTOS apps/examples/xmlrpc application, where a device stats structure stored remotely provided parameters with a hardcoded buffer size,...

9.8CVSS6.5AI score0.00625EPSS
Exploits0References12
CNVD
CNVD
added 2025/05/30 12:0 a.m.2 views

Apache NuttX Buffer Overflow Vulnerability (CNVD-2025-12572)

Apache NuttX is a real-time embedded operating system from the Apache Foundation. A buffer overflow vulnerability exists in Apache NuttX versions prior to 12.9.0, which originates from an application boundary error when handling untrusted input, and can be exploited by an attacker to cause a syst...

9.8CVSS8.2AI score0.0121EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/28 10:47 a.m.7 views

CVE-2025-35003

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

9.8CVSS7.9AI score0.0121EPSS
Exploits1References1
NVD
NVD
added 2025/05/26 10:15 a.m.13 views

CVE-2025-35003

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

9.8CVSS0.0121EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2025/05/26 10:15 a.m.4 views

CVE-2025-35003

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

9.8CVSS6AI score0.0121EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/05/26 10:3 a.m.22 views

CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

0.0121EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/05/26 10:3 a.m.7 views

CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

7.9AI score0.0121EPSS
Exploits1References2
OSV
OSV
added 2025/05/26 10:3 a.m.4 views

CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

9.8CVSS6.2AI score0.0121EPSS
Exploits1References5
CVE
CVE
added 2025/05/26 10:3 a.m.60 views

CVE-2025-35003

CVE-2025-35003 covers a buffer overflow in Apache NuttX’s Bluetooth Stack (HCI and UART components). The issue arises from improper restriction in memory buffers, potentially enabling system crash, denial of service, or arbitrary code execution after receiving crafted packets. Affected software: ...

9.8CVSS8.1AI score0.0121EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.6 views

PT-2025-22888 · Apache · Apache Nuttx

Name of the Vulnerable Software and Affected Versions: Apache NuttX versions 7.25 through 12.9.0 Description: Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART...

9.8CVSS7.4AI score0.0121EPSS
Exploits1References14
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.4 views

Apache NuttX 安全漏洞

Apache NuttX is a real-time embedded operating system from the Apache Foundation. A buffer overflow vulnerability exists in Apache NuttX versions prior to 12.9.0, which originates from an application boundary error when handling untrusted input, and can be exploited by an attacker to cause a syst...

9.8CVSS7.7AI score0.0121EPSS
Exploits1References3
Rows per page
Query Builder