106 matches found
CVE-2025-47869
CVE-2025-47869 affects Apache NuttX RTOS, specifically the apps/examples/xmlrpc component. A device stats structure stored remotely provided parameters using hardcoded buffers can lead to a buffer overflow. The buffers were corrected to CONFIG_XMLRPC_STRINGSIZE+1 in the release 12.9.0 example, af...
CVE-2025-47869 Apache NuttX RTOS: examples/xmlrpc: Fix calls buffers size.
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability was discovered in Apache NuttX RTOS apps/exapmles/xmlrpc application. In this example application device stats structure that stored remotely provided parameters had hardcoded buffer size which could lead to...
CVE-2025-47868 Apache NuttX RTOS: tools/bdf-converter.: tools/bdf-converter: Fix loop termination condition.
Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active...
CVE-2025-47868
The CVE concerns Apache NuttX’s optional tools/bdf-converter in the repository, which suffers an out-of-bounds write that can cause a heap-based buffer overflow. Affected versions are 6.9 through 12.9.0; the issue arises when the tool is exposed to externally provided data. The advisory recommend...
CVE-2025-47868 Apache NuttX RTOS: tools/bdf-converter.: tools/bdf-converter: Fix loop termination condition.
Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active...
CVE-2025-47868 Apache NuttX RTOS: tools/bdf-converter.: tools/bdf-converter: Fix loop termination condition.
Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active...
Apache NuttX 安全漏洞
Apache NuttX is a real-time embedded operating system from the Apache USA Foundation. A security vulnerability exists in Apache NuttX versions prior to 6.9 through 12.9.0, which stems from an out-of-bounds write that could result in a heap buffer overflow...
Apache NuttX 安全漏洞
Apache NuttX is a real-time embedded operating system from the Apache Foundation. A buffer overflow vulnerability exists in Apache NuttX versions prior to 6.22 through 12.9.0, which stems from an application boundary error when handling untrusted input and can be exploited by an attacker to cause...
PT-2025-25489 · Apache · Apache Nuttx
Name of the Vulnerable Software and Affected Versions: Apache NuttX versions 6.9 through 12.9.0 Description: An Out-of-bounds Write resulting in a possible Heap-based Buffer Overflow issue was discovered in the tools/bdf-converter font conversion utility, which is part of the Apache NuttX RTOS...
PT-2025-25490 · Apache · Apache Nuttx Rtos
Name of the Vulnerable Software and Affected Versions: Apache NuttX RTOS versions 6.22 through 12.9.0 Description: An issue was discovered in the Apache NuttX RTOS apps/examples/xmlrpc application, where a device stats structure stored remotely provided parameters with a hardcoded buffer size,...
Apache NuttX Buffer Overflow Vulnerability (CNVD-2025-12572)
Apache NuttX is a real-time embedded operating system from the Apache Foundation. A buffer overflow vulnerability exists in Apache NuttX versions prior to 12.9.0, which originates from an application boundary error when handling untrusted input, and can be exploited by an attacker to cause a syst...
CVE-2025-35003
Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...
CVE-2025-35003
Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...
CVE-2025-35003
Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...
CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.
Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...
CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.
Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...
CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.
Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...
CVE-2025-35003
CVE-2025-35003 covers a buffer overflow in Apache NuttX’s Bluetooth Stack (HCI and UART components). The issue arises from improper restriction in memory buffers, potentially enabling system crash, denial of service, or arbitrary code execution after receiving crafted packets. Affected software: ...
PT-2025-22888 · Apache · Apache Nuttx
Name of the Vulnerable Software and Affected Versions: Apache NuttX versions 7.25 through 12.9.0 Description: Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART...
Apache NuttX 安全漏洞
Apache NuttX is a real-time embedded operating system from the Apache Foundation. A buffer overflow vulnerability exists in Apache NuttX versions prior to 12.9.0, which originates from an application boundary error when handling untrusted input, and can be exploited by an attacker to cause a syst...