Zephyr@* Security Vulnerabilities and Issues — Zephyr@* CVE List

Lucene search

ZephyrprojectZephyr*

13 matches found

cve•added 2019/08/29 1:15 a.m.•163 views

CVE-2017-14201

Use After Free vulnerability in the Zephyr shell allows a serial or telnet connected user to cause denial of service, and possibly remote code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.

7.8CVSS8.1AI score0.00698EPSS

cve•added 2019/08/29 1:15 a.m.•157 views

CVE-2017-14202

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the shell component of Zephyr allows a serial or telnet connected user to cause a crash, possibly with arbitrary code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.

7.8CVSS7.9AI score0.00155EPSS

cve•added 2020/06/05 6:15 p.m.•103 views

CVE-2020-10061

Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in memory corruption. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions.

8.8CVSS8.5AI score0.00097EPSS

cve•added 2020/06/05 6:15 p.m.•99 views

CVE-2020-10068

In the Zephyr project Bluetooth subsystem, certain duplicate and back-to-back packets can cause incorrect behavior, resulting in a denial of service. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions.

6.5CVSS5.8AI score0.00075EPSS

cve•added 2023/09/25 10:15 p.m.•96 views

CVE-2023-4258

In Bluetooth mesh implementation If provisionee has a public key that is sent OOB then during provisioning it can be sent back and will be accepted by provisionee.

8.6CVSS7.4AI score0.00166EPSS

cve•added 2020/05/11 11:15 p.m.•59 views

CVE-2020-10019

USB DFU has a potential buffer overflow where the requested length (wLength) is not checked against the buffer size. This could be used by a malicious USB host to exploit the buffer overflow. See NCC-ZEP-002 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later versions. version 2....

8.1CVSS8AI score0.00089EPSS

cve•added 2024/03/15 7:15 p.m.•54 views

CVE-2023-7060

Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address.

8.6CVSS8.6AI score0.00197EPSS

cve•added 2024/08/19 10:15 p.m.•46 views

CVE-2024-4785

BT: Missing Check in LL_CONNECTION_UPDATE_IND Packet Leads to Division by Zero

7.6CVSS6.9AI score0.0009EPSS

cve•added 2024/09/13 7:15 p.m.•43 views

CVE-2024-6258

BT: Missing length checks of net_buf in rfcomm_handle_data

6.8CVSS6.5AI score0.00078EPSS

cve•added 2024/02/18 8:15 a.m.•42 views

CVE-2023-6249

Signed to unsigned conversion esp32_ipm_send

9.8CVSS7.8AI score0.00233EPSS

cve•added 2024/09/13 7:15 p.m.•40 views

CVE-2024-5754

BT: Encryption procedure host vulnerability

8.2CVSS7.3AI score0.00041EPSS

cve•added 2023/01/11 5:15 a.m.•35 views

CVE-2021-3966

usb device bluetooth class includes a buffer overflow related to implementation of net_buf_add_mem.

9.6CVSS9AI score0.00055EPSS

cve•added 2023/01/11 4:15 a.m.•34 views

CVE-2022-0553

There is no check to see if slot 0 is being uploaded from the device to the host. When using encrypted images this means the unencrypted firmware can be retrieved easily.

6.5CVSS5AI score0.00021EPSS