Zephyr@* Security Vulnerabilities and Issues — Zephyr@* CVE List

Lucene search

ZephyrprojectZephyr*

9 matches found

CVE•added 2020/06/05 6:15 p.m.•105 views

CVE-2020-10071

The Zephyr MQTT parsing code performs insufficient checking of the length field on publish messages, allowing a buffer overflow and potentially remote code execution. NCC-ZEP-031 This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions.

9.8CVSS10AI score0.13899EPSS

CVE•added 2020/06/05 6:15 p.m.•104 views

CVE-2020-10062

An off-by-one error in the Zephyr project MQTT packet length decoder can result in memory corruption and possible remote code execution. NCC-ZEP-031 This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions.

9.8CVSS9.8AI score0.05817EPSS

CVE•added 2020/06/05 6:15 p.m.•104 views

CVE-2020-10070

In the Zephyr Project MQTT code, improper bounds checking can result in memory corruption and possibly remote code execution. NCC-ZEP-031 This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions.

9.8CVSS9.9AI score0.06474EPSS

CVE•added 2020/06/05 6:15 p.m.•103 views

CVE-2020-10063

A remote adversary with the ability to send arbitrary CoAP packets to be parsed by Zephyr is able to cause a denial of service. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions.

7.5CVSS7AI score0.0187EPSS

CVE•added 2020/06/05 6:15 p.m.•102 views

CVE-2020-10061

Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in memory corruption. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions.

8.8CVSS8.5AI score0.00097EPSS

CVE•added 2020/06/05 6:15 p.m.•98 views

CVE-2020-10068

In the Zephyr project Bluetooth subsystem, certain duplicate and back-to-back packets can cause incorrect behavior, resulting in a denial of service. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions.

6.5CVSS5.8AI score0.00075EPSS

CVE•added 2020/05/11 11:15 p.m.•62 views

CVE-2020-10060

In updatehub_probe, right after JSON parsing is complete, objects[1] is accessed from the output structure in two different places. If the JSON contained less than two elements, this access would reference unitialized stack memory. This could result in a crash, denial of service, or possibly an inf...

8CVSS5.7AI score0.02972EPSS

CVE•added 2020/05/11 11:15 p.m.•58 views

CVE-2020-10019

USB DFU has a potential buffer overflow where the requested length (wLength) is not checked against the buffer size. This could be used by a malicious USB host to exploit the buffer overflow. See NCC-ZEP-002 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later versions. version 2....

8.1CVSS8AI score0.00089EPSS

CVE•added 2020/05/11 11:15 p.m.•57 views

CVE-2020-10021

Out-of-bounds Write in the USB Mass Storage memoryWrite handler with unaligned Sizes See NCC-ZEP-024, NCC-ZEP-025, NCC-ZEP-026 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later versions. version 2.1.0 and later versions.

8.1CVSS7.8AI score0.00077EPSS