Lucene search
K

106 matches found

CNNVD
CNNVD
added 2021/04/29 12:0 a.m.5 views

Apache NuttX 输入验证错误漏洞

Apache NuttX is a real-time embedded operating system from the Apache Foundation USA. Apache NuttX suffers from an input validation error vulnerability that stems from the fact that incorrect memory allocation could lead to arbitrary memory allocation, which could result in unexpected behavior su...

9.8CVSS8.9AI score0.05038EPSS
Exploits0References4
CNVD
CNVD
added 2020/12/15 12:0 a.m.9 views

Apache NuttX TCP Stack Out-of-Bounds Write Vulnerability

Apache NuttX is a real-time embedded operating system from the Apache Software Foundation.TCP Transmission Control Protocol is a connection-oriented, reliable, byte-stream-based transport layer communication protocol defined by IETF RFC 793. TCP Transmission Control Protocol is a...

9.8CVSS6.8AI score0.02855EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/11 12:0 a.m.3 views

Apache NuttX Buffer Overflow Vulnerability

Apache NuttX is a real-time embedded operating system from the Apache Software Foundation.TCP Transmission Control Protocol is a connection-oriented, reliable, byte-stream-based transport layer communication protocol defined by IETF RFC 793. TCP Transmission Control Protocol is a...

9.1CVSS7.5AI score0.03134EPSS
Exploits0References1
NVD
NVD
added 2020/12/09 5:15 p.m.13 views

CVE-2020-17528

Out-of-bounds Write vulnerability in TCP stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet...

9.1CVSS9.2AI score0.03134EPSS
Exploits0References2
OSV
OSV
added 2020/12/09 5:15 p.m.14 views

CVE-2020-17529

Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIGEXPERIMENTAL and...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2020/12/09 5:15 p.m.15 views

CVE-2020-17528

Out-of-bounds Write vulnerability in TCP stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet...

9.1CVSS6.9AI score0.03134EPSS
Exploits0References2
NVD
NVD
added 2020/12/09 5:15 p.m.20 views

CVE-2020-17529

Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIGEXPERIMENTAL and...

9.8CVSS9.4AI score0.02855EPSS
Exploits0References2
Prion
Prion
added 2020/12/09 5:15 p.m.15 views

Cross site scripting

Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIGEXPERIMENTAL and...

6.8CVSS9.2AI score0.02855EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/12/09 5:15 p.m.16 views

Cross site scripting

Out-of-bounds Write vulnerability in TCP stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet...

6.4CVSS9.1AI score0.03134EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/12/09 4:35 p.m.22 views

CVE-2020-17529 Apache NuttX (incubating) Out of Bound Write from invalid fragmentation offset value specified in the IP header

Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIGEXPERIMENTAL and...

9.4AI score0.02855EPSS
Exploits0References2
CVE
CVE
added 2020/12/09 4:35 p.m.50 views

CVE-2020-17529

CVE-2020-17529 affects Apache NuttX (incubating) TCP Stack up to 9.1.0 and 10.0.0, when built with CONFIG_EXPERIMENTAL and CONFIG_NET_TCP_REASSEMBLY. It describes an out-of-bounds write triggered by an invalid fragmentation offset in the IP header, leading to memory corruption. CVSS metrics repor...

9.8CVSS9.4AI score0.02855EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/12/09 4:35 p.m.17 views

CVE-2020-17528 Apache NuttX (incubating) Out of Bound Write from invalid TCP Urgent length

Out-of-bounds Write vulnerability in TCP stack of Apache NuttX incubating versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet...

9.2AI score0.03134EPSS
Exploits0References2
CVE
CVE
added 2020/12/09 4:35 p.m.45 views

CVE-2020-17528

The CVE-2020-17528 entry affects Apache NuttX (incubating) and its TCP stack, with vulnerable versions up to 9.1.0 and 10.0.0. The issue is an out-of-bounds write caused by supplying arbitrary urgent data pointer offsets within TCP packets, including beyond packet length, leading to memory corrup...

9.1CVSS9.2AI score0.03134EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2020/12/09 12:0 a.m.6 views

Apache NuttX 缓冲区错误漏洞

Apache NuttX is a real-time embedded operating system from the Apache Software Foundation.TCP Transmission Control Protocol is a connection-oriented, reliable, byte-stream-based transport layer communication protocol defined by IETF RFC 793. TCP Transmission Control Protocol is a...

9.8CVSS7.3AI score0.02855EPSS
Exploits0References4
CNNVD
CNNVD
added 2020/12/09 12:0 a.m.11 views

Apache NuttX 缓冲区错误漏洞

Apache NuttX is a real-time embedded operating system from the Apache Software Foundation.TCP Transmission Control Protocol is a connection-oriented, reliable, byte-stream-based transport layer communication protocol defined by IETF RFC 793. TCP Transmission Control Protocol is a...

9.1CVSS7.6AI score0.03134EPSS
Exploits0References4
CNVD
CNVD
added 2020/05/14 12:0 a.m.4 views

Apache NuttX Code Issue Vulnerability

Apache NuttX is a real-time embedded operating system from the Apache Software Apache Software Foundation. A code issue vulnerability exists in Apache NuttX Incubating versions 6.15 through 8.2. A remote attacker can exploit the vulnerability to cause a denial of service with a specially crafted...

9.8CVSS7.1AI score0.02497EPSS
Exploits0References1
NVD
NVD
added 2020/05/12 3:15 p.m.22 views

CVE-2020-1939

The Apache NuttX Incubating project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected on...

9.8CVSS9.5AI score0.02497EPSS
Exploits0References1
OSV
OSV
added 2020/05/12 3:15 p.m.12 views

CVE-2020-1939

The Apache NuttX Incubating project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected on...

9.8CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2020/05/12 3:15 p.m.11 views

Null pointer dereference

The Apache NuttX Incubating project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected on...

5.1CVSS9.4AI score0.02497EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/05/12 2:57 p.m.23 views

CVE-2020-1939

The Apache NuttX Incubating project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected on...

9.5AI score0.02497EPSS
Exploits0References1
Rows per page
Query Builder