Lucene search
+L

41 matches found

NVD
NVD
added 2026/07/08 5:17 p.m.10 views

CVE-2026-29009

U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfsreadlinkreply net/nfs-common.c when CONFIGCMDNFS is enabled, allowing a malicious or compromised NFS server to overflow the 2048-byte nfspathbuff buffer by returning multiple relative symlink targets that are appended witho...

8.8CVSS0.00438EPSS
Exploits0References4
NVD
NVD
added 2026/07/08 5:17 p.m.8 views

CVE-2026-29007

U-Boot through 2026.04-rc3 contains an out-of-bounds read vulnerability in tcprxstatemachine net/tcp.c when CONFIGPROTTCP is enabled, allowing remote attackers to read beyond TCP segment boundaries by crafting a malicious packet with a mismatched IP total length and TCP data offset field. Attacke...

6.9CVSS0.00472EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

Debian dla-4642 : u-boot - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4642 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4642-1 [email protected]...

8.8CVSS6AI score0.00598EPSS
Exploits1References7
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в u-boot

Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur due to a crafted squashfs filesystem using sbrk, request2size, or because ptrdifft is mishandled on x8664...

7.8CVSS7.4AI score0.00233EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux - уязвимость в u-boot

A issue was discovered in Das U-Boot during the period from 2019.07. There is a stack-based buffer overflow in the nfshandler reply helper function: nfsmountreply...

9.8CVSS7.6AI score0.02488EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в u-boot

A issue was discovered in Das U-Boot during the period from 2019.07. There is an unbounded memcpy operation with a failed length check at nfsreadreply, when calling storeblock in the NFSv3 case...

9.8CVSS7.1AI score0.0235EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:52 a.m.8 views

CVE-2022-33967

squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service DoS condition or arbitrary code...

7.8CVSS7.6AI score0.00516EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5445

Malware in sbrugna...

9.8CVSS9.2AI score0.0235EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-1878

Malware in sbrugna...

5.5CVSS5.4AI score0.00713EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2019-2767

Malware in sbrugna...

9.8CVSS9.2AI score0.019EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-15754

Malware in sbrugna...

8.2CVSS7.4AI score0.00276EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-5443

Malware in sbrugna...

9.8CVSS9.2AI score0.02403EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2019-4647

Malware in sbrugna...

8.3CVSS8.5AI score0.01764EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34616

Malicious code in bioql PyPI...

7.7CVSS7.6AI score0.00586EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-23651

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00314EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/10/01 12:0 a.m.6 views

Debian dla-4320 : u-boot - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4320 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4320-1 [email protected]...

7.8CVSS7.5AI score0.01095EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.9 views

PT-2025-31971 · U-Boot +1 · U-Boot +1

Name of the Vulnerable Software and Affected Versions: U-Boot version 1.1.3 Description: A lack of signature verification in the bootloader allows attackers to install crafted firmware files, leading to arbitrary code execution. Recommendations: Update to a newer version that includes signature...

6.5CVSS9.3AI score0.00314EPSS
Exploits1References16
RedhatCVE
RedhatCVE
added 2025/05/23 4:42 a.m.6 views

CVE-2023-48425

U-Boot vulnerability resulting in persistent Code Execution...

9.8CVSS7.4AI score0.00372EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:59 a.m.6 views

CVE-2023-48424

U-Boot shell vulnerability resulting in Privilege escalation in a production device...

9.8CVSS7.2AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.8 views

CVE-2022-30790

Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552...

7.8CVSS6.8AI score0.00554EPSS
Exploits1References1
Rows per page
Query Builder