Yocto@3.1 Security Vulnerabilities and Issues — Yocto@3.1 CVE List

Lucene search

YoctoprojectYocto3.1

24 matches found

CVE•added 2022/09/06 6:15 p.m.•78 views

CVE-2022-26447

In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784478; Issue ID: ALPS06784478.

9.8CVSS9.2AI score0.02749EPSS

CVE•added 2023/03/07 9:15 p.m.•75 views

CVE-2023-20623

In ion, there is a possible escalation of privilege due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559778; Issue ID: ALPS07559778.

6.4CVSS6.6AI score0.00016EPSS

CVE•added 2022/08/01 2:15 p.m.•59 views

CVE-2022-26433

In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138400; Issue ID: ALPS07138400.

6.7CVSS6.7AI score0.00017EPSS

CVE•added 2022/08/01 2:15 p.m.•58 views

CVE-2022-26430

6.7CVSS6.7AI score0.00017EPSS

CVE•added 2022/08/01 2:15 p.m.•56 views

CVE-2022-26434

In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138450; Issue ID: ALPS07138450.

6.7CVSS6.7AI score0.00015EPSS

CVE•added 2022/08/01 2:15 p.m.•53 views

CVE-2022-26431

6.7CVSS6.7AI score0.00015EPSS

CVE•added 2022/12/05 3:15 p.m.•51 views

CVE-2022-32632

In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441630; Issue ID: ALPS07441630.

6.7CVSS6.7AI score0.00017EPSS

CVE•added 2022/08/01 2:15 p.m.•50 views

CVE-2022-26435

6.7CVSS6.7AI score0.00017EPSS

CVE•added 2022/12/05 3:15 p.m.•48 views

CVE-2022-32633

In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441637; Issue ID: ALPS07441637.

6.7CVSS6.6AI score0.00025EPSS

CVE•added 2022/12/05 3:15 p.m.•47 views

CVE-2022-32631

6.7CVSS6.7AI score0.00017EPSS

CVE•added 2022/09/06 6:15 p.m.•46 views

CVE-2022-26465

In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558799; Issue ID: ALPS06558799.

6.7CVSS6.7AI score0.00015EPSS

CVE•added 2023/04/06 6:15 p.m.•44 views

CVE-2023-20659

In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588413.

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2022/08/01 2:15 p.m.•43 views

CVE-2022-26432

6.7CVSS6.7AI score0.00015EPSS

CVE•added 2023/04/06 6:15 p.m.•43 views

CVE-2023-20679

In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588453.

4.4CVSS4.9AI score0.00021EPSS

CVE•added 2023/04/06 6:15 p.m.•42 views

CVE-2023-20660

In wlan, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588383; Issue ID: ALPS07588383.

4.4CVSS4.2AI score0.00028EPSS

CVE•added 2023/04/06 6:15 p.m.•42 views

CVE-2023-20663

In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560741; Issue ID: ALPS07560741.

6.7CVSS6.7AI score0.00032EPSS

CVE•added 2022/09/06 6:15 p.m.•40 views

CVE-2022-26466

In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558777; Issue ID: ALPS06558777.

6.7CVSS6.7AI score0.00013EPSS

CVE•added 2023/04/06 6:15 p.m.•40 views

CVE-2023-20661

6.7CVSS6.7AI score0.00032EPSS

CVE•added 2023/04/06 6:15 p.m.•40 views

CVE-2023-20662

6.7CVSS6.7AI score0.00032EPSS

CVE•added 2023/04/06 6:15 p.m.•37 views

CVE-2023-20674

In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07588552.

4.4CVSS4.2AI score0.00018EPSS

CVE•added 2023/04/06 6:15 p.m.•37 views

CVE-2023-20676

4.4CVSS4.2AI score0.00018EPSS

CVE•added 2023/04/06 6:15 p.m.•37 views

CVE-2023-20682

6.7CVSS6.7AI score0.00032EPSS

CVE•added 2023/04/06 6:15 p.m.•36 views

CVE-2023-20675

4.4CVSS4.2AI score0.00018EPSS

CVE•added 2023/04/06 6:15 p.m.•29 views

CVE-2023-20677

4.4CVSS4.2AI score0.00018EPSS