U-boot Security Vulnerabilities and Issues — U-boot CVE List

Lucene search

DenxU-boot

11 matches found

CVE•added 2020/03/19 2:15 p.m.•162 views

CVE-2020-10648

Das U-Boot through 2020.01 allows attackers to bypass verified boot restrictions and subsequently boot arbitrary images by providing a crafted FIT image to a system configured to boot the default configuration.

7.8CVSS8.4AI score0.00123EPSS

CVE•added 2019/07/29 3:15 p.m.•160 views

CVE-2019-13103

A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data.

7.1CVSS7.9AI score0.00161EPSS

CVE•added 2019/08/06 7:15 p.m.•157 views

CVE-2019-13104

In Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow can cause memcpy() to overwrite a very large amount of data (including the whole stack) while reading a crafted ext4 filesystem.

7.8CVSS7.3AI score0.0029EPSS

CVE•added 2021/02/17 11:15 p.m.•108 views

CVE-2021-27097

The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.

7.8CVSS7.3AI score0.0009EPSS

CVE•added 2022/06/08 1:15 p.m.•92 views

CVE-2022-30790

Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.

7.8CVSS6.3AI score0.00251EPSS

CVE•added 2022/09/23 1:15 p.m.•86 views

CVE-2022-2347

There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not verify that the transfer direction corresponds to the specified command. Consequently, if a physical attacker crafts a USB DFU download s...

7.7CVSS6.9AI score0.00021EPSS

CVE•added 2021/02/17 11:15 p.m.•78 views

CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

7.8CVSS7.3AI score0.0009EPSS

CVE•added 2019/08/06 8:15 p.m.•72 views

CVE-2019-13105

Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem.

7.8CVSS7.4AI score0.00259EPSS

CVE•added 2022/07/01 12:15 p.m.•67 views

CVE-2022-33103

Das U-Boot from v2020.10 to v2022.07-rc3 was discovered to contain an out-of-bounds write via the function sqfs_readdir().

7.8CVSS7.7AI score0.00031EPSS

CVE•added 2022/07/20 7:15 a.m.•61 views

CVE-2022-33967

squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service (DoS) condition or arbitrary code e...

7.8CVSS8.9AI score0.00485EPSS

CVE•added 2018/11/20 7:29 p.m.•59 views

CVE-2018-18440

DENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overflow via a crafted kernel image because filesystem loading is mishandled.

7.8CVSS7.5AI score0.00051EPSS