Lucene search
K

106 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:50 p.m.9 views

CVE-2021-34125

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands...

7.5CVSS6.7AI score0.0096EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 7:28 p.m.12 views

CVE-2021-26461

Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.6AI score0.05038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 p.m.9 views

CVE-2020-1939

The Apache NuttX Incubating project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected on...

9.8CVSS6.8AI score0.02497EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 p.m.12 views

CVE-2020-17529

Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIGEXPERIMENTAL and...

9.8CVSS6.8AI score0.02855EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 12:59 p.m.8 views

CVE-2018-20578

An issue was discovered in NuttX before 7.27. The function netlibparsehttpurl in apps/netutils/netlib/netlibparsehttpurl.c mishandles URLs longer than hostlen bytes in the webclient, this is set by default to 40, leading to an Infinite Loop. The attack vector is the Location header of an HTTP 3xx...

7.5CVSS6.9AI score0.01599EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/07 2:35 a.m.21 views

CVE-2025-25057 third_party_NuttX has a memory leak vulnerability

in OpenHarmony v5.0.2 and prior versions allow a local attacker case DOS through missing release of memory...

3.3CVSS0.00137EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/07 2:35 a.m.8 views

CVE-2025-25057 third_party_NuttX has a memory leak vulnerability

in OpenHarmony v5.0.2 and prior versions allow a local attacker case DOS through missing release of memory...

3.3CVSS6.7AI score0.00137EPSS
Exploits0References1
OSV
OSV
added 2023/03/09 11:15 p.m.11 views

CVE-2021-34125

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands...

7.5CVSS7.8AI score
Exploits0References8
NVD
NVD
added 2023/03/09 11:15 p.m.19 views

CVE-2021-34125

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands...

7.5CVSS7.5AI score0.0096EPSS
Exploits1References8
Prion
Prion
added 2023/03/09 11:15 p.m.17 views

Command injection

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands...

5CVSS7.5AI score0.0096EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2023/03/09 12:0 a.m.59 views

CVE-2021-34125

CVE-2021-34125 concerns Yuneec Mantis Q and PX4-Autopilot v1.11.3 and earlier where sensitive information can be leaked via various nuttx commands. The PX4-Autopilot impact is supported by PT-2023-12246, which recommends updating PX4-Autopilot to versions above 1.11.3 to resolve the issue; for Yu...

7.5CVSS7.5AI score0.0096EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2023/03/09 12:0 a.m.22 views

CVE-2021-34125

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands...

7.7AI score0.0096EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2023/03/09 12:0 a.m.5 views

PT-2023-12246 · Yuneec · Yuneec Mantis Q

Name of the Vulnerable Software and Affected Versions: Yuneec Mantis Q affected versions not specified PX4-Autopilot versions 1.11.3 and below Description: An issue in the affected software allows an attacker to gain access to sensitive information via various nuttx commands. Recommendations: For...

7.5CVSS7AI score0.0096EPSS
Exploits1References12
Vulnrichment
Vulnrichment
added 2023/03/09 12:0 a.m.7 views

CVE-2021-34125

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands...

7.6AI score0.0096EPSS
Exploits1References8
BDU FSTEC
BDU FSTEC
added 2021/09/29 12:0 a.m.6 views

The vulnerability in the implementation of the malloc, realloc, and memalign functions of the Apache Nuttx operating system allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the malloc, realloc, and memalign functions in the Apache Nuttx operating system arises due to integer overflow. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...

9.8CVSS8.2AI score0.05038EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2021/06/21 5:15 p.m.20 views

CVE-2021-26461

Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS0.05038EPSS
Exploits0References1
OSV
OSV
added 2021/06/21 5:15 p.m.17 views

CVE-2021-26461

Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.5AI score
Exploits0References1
Prion
Prion
added 2021/06/21 5:15 p.m.20 views

Integer overflow

Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

7.5CVSS9.6AI score0.05038EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/21 5:10 p.m.22 views

CVE-2021-26461 malloc, realloc and memalign implementations are vulnerable to integer wrap-arounds

Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8AI score0.05038EPSS
Exploits0References1
CVE
CVE
added 2021/06/21 5:10 p.m.66 views

CVE-2021-26461

Apache NuttX (OS) versions prior to 10.1.0 are affected by CVE-2021-26461 due to integer wrap-around in memory management calls (malloc, realloc, memalign). This can lead to arbitrary memory allocation and outcomes such as a crash or remote code execution. Remediation is to update to 10.1.0 or la...

9.8CVSS9.7AI score0.05038EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder