Nuttx Security Vulnerabilities and Issues — Nuttx CVE List

Lucene search

ApacheNuttx

7 matches found

CVE•added 2025/06/16 11:15 a.m.•48 views

CVE-2025-47869

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability was discovered in Apache NuttX RTOS apps/exapmles/xmlrpc application. In this example application device stats structure that stored remotely provided parameters had hardcoded buffer size which could lead to buffe...

9.8CVSS6.7AI score0.00095EPSS

CVE•added 2025/05/26 10:15 a.m.•45 views

CVE-2025-35003

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack (HCI and UART components) that may result in system crash, denial of service, or arbitrary code execution, after receiving mal...

9.8CVSS8.1AI score0.00075EPSS

CVE•added 2020/05/12 3:15 p.m.•38 views

CVE-2020-1939

The Apache NuttX (Incubating) project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected on...

9.8CVSS9.4AI score0.00872EPSS

CVE•added 2021/06/21 5:15 p.m.•37 views

CVE-2021-26461

Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.

9.8CVSS9.7AI score0.02052EPSS

CVE•added 2020/12/09 5:15 p.m.•34 views

CVE-2020-17529

Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX (incubating) versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIG_EXPERIMENTAL and C...

9.8CVSS9.4AI score0.0143EPSS

CVE•added 2020/12/09 5:15 p.m.•30 views

CVE-2020-17528

Out-of-bounds Write vulnerability in TCP stack of Apache NuttX (incubating) versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet.

9.1CVSS9.2AI score0.0174EPSS

CVE•added 2025/06/16 11:15 a.m.•28 views

CVE-2025-47868

Out-of-bounds Write resulting in possible Heap-based Buffer Overflow vulnerability was discovered in tools/bdf-converter font conversion utility that is part of Apache NuttX RTOS repository. This standalone program is optional and neither part of NuttX RTOS nor Applications runtime, but active bdf-...

9.8CVSS6.5AI score0.00095EPSS