CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

432 matches found

Vulnrichment•added 2026/01/14 3:19 p.m.•2 views

CVE-2026-22211 TinyOS <= 2.1.2 Global Buffer Overflow in printfUART

TinyOS versions up to and including 2.1.2 contain a global buffer overflow vulnerability in the printfUART formatted output implementation used within the ZigBee / IEEE 802.15.4 networking stack. The implementation formats output into a fixed-size global buffer and concatenates strings for %s...

5.1CVSS6.5AI score0.00038EPSS

Exploits0References3

Cvelist•added 2026/01/14 3:19 p.m.•24 views

CVE-2026-22211 TinyOS <= 2.1.2 Global Buffer Overflow in printfUART

5.1CVSS0.00038EPSS

Exploits0References3

CVE•added 2026/01/14 3:19 p.m.•6 views

CVE-2026-22211

CVE-2026-22211 (TinyOS

5.1CVSS6.5AI score0.00038EPSS

Exploits0References3

CNNVD•added 2026/01/14 12:0 a.m.•1 views

TinyOS 缓冲区错误漏洞

TinyOS is an operating system in the TinyOS open source. A buffer error vulnerability exists in TinyOS 2.1.2 and prior versions, which stems from a global buffer overflow in the printfUART formatted output implementation in the ZigBee/IEEE 802.15.4 network stack, which could lead to a denial of...

5.1CVSS7AI score0.00038EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 12:39 p.m.•2 views

CVE-2023-29779

Sengled Dimmer Switch V0.0.9 contains a denial of service DOS vulnerability, which allows a remote attacker to send malicious Zigbee messages to a vulnerable device and cause crashes. After receiving the malicious command, the device will keep reporting its status and finally drain its battery...

7.5CVSS7AI score0.00602EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:39 p.m.•3 views

CVE-2023-29780

Third Reality Smart Blind 1.00.54 contains a denial-of-service vulnerability, which allows a remote attacker to send malicious Zigbee messages to a vulnerable device and cause crashes...

7.5CVSS7AI score0.0065EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:34 a.m.•4 views

CVE-2017-18868

Digi XBee 2 devices do not have an effective protection mechanism against remote AT commands, because of issues related to the network stack upon which the ZigBee protocol is built...

7.7CVSS7.2AI score0.00141EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:58 a.m.•6 views

CVE-2020-7476

A CWE-426: Untrusted Search Path vulnerability exists in ZigBee Installation Kit Versions prior to 1.0.1, which could cause execution of malicious code when a malicious file is put in the search path...

7.8CVSS7.1AI score0.00146EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:9 a.m.•5 views

CVE-2019-20481

In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480...

9.8CVSS6.5AI score0.00321EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:8 a.m.•6 views

CVE-2019-20480

In MIELE XGW 3000 ZigBee Gateway before 2.4.0, a malicious website visited by an authenticated admin user or a malicious mail is allowed to make arbitrary changes in the "admin panel" because there is no CSRF protection...

8.8CVSS6.7AI score0.00321EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:17 a.m.•3 views

CVE-2025-1394

The Ember ZNet stack’s packet buffer manager may read out of bound memory leading to an assert, causing a Denial of Service DoS...

5.9CVSS6AI score0.0012EPSS

Exploits0References1

Securelist•added 2025/12/12 8:0 a.m.•5 views

Turn me on, turn me off: Zigbee assessment in industrial environments

We all encounter IoT and home automation in some form or another, from smart speakers to automated sensors that control water pumps. These services appear simple and straightforward to us, but many devices and protocols work together under the hood to deliver them. One of those protocols is Zigbe...

6.8AI score

Exploits0

RedhatCVE•added 2025/10/18 4:43 p.m.•6 views

CVE-2025-8414

Due to improper input validation, a buffer overflow vulnerability is present in Zigbee EZSP Host Applications. If the buffer overflows, stack corruption is possible. In certain conditions, this could lead to arbitrary code execution. Access to a network key is required to exploit this vulnerabili...

9.4CVSS8.1AI score0.00041EPSS

Exploits0References1

EUVD•added 2025/10/17 6:31 p.m.•1 views

EUVD-2025-34896

9.4CVSS7.7AI score0.00041EPSS

Exploits0References2

NVD•added 2025/10/17 4:15 p.m.•2 views

CVE-2025-8414

9.4CVSS0.00041EPSS

Exploits0References1

Vulnrichment•added 2025/10/17 4:2 p.m.•4 views

CVE-2025-8414 Zigbee Green Power Host Buffer Overflow Vulnerability

9.4CVSS7.8AI score0.00041EPSS

Exploits0References1

CVE•added 2025/10/17 4:2 p.m.•6 views

CVE-2025-8414

CVE-2025-8414 affects Zigbee EZSP Host Applications and is caused by improper input validation leading to a buffer overflow. This can cause stack corruption and, under certain conditions, arbitrary code execution. Exploitation requires access to a network key. The CVSS 4.0 score is CRITICAL (AV: ...

9.4CVSS7.8AI score0.00041EPSS

Exploits0References1

Cvelist•added 2025/10/17 4:2 p.m.•8 views

CVE-2025-8414 Zigbee Green Power Host Buffer Overflow Vulnerability

9.4CVSS0.00041EPSS

Exploits0References1

CNNVD•added 2025/10/17 12:0 a.m.•1 views

ZigBee 安全漏洞

ZigBee is a low-speed, short-range transmission wireless networking protocol from the ZigBee open source. A security vulnerability exists in ZigBee that stems from improper input validation leading to a buffer overflow that could lead to stack corruption and arbitrary code execution...

9.4CVSS8.1AI score0.00041EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-8609

Malware in sbrugna...

5.5CVSS5.5AI score0.01003EPSS

Exploits1References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by