Zephyr@1.14.1 Security Vulnerabilities and Issues — Zephyr@1.14.1 CVE List

Lucene search

ZephyrprojectZephyr1.14.1

3 matches found

CVE•added 2020/05/11 11:15 p.m.•55 views

CVE-2020-10067

A malicious userspace application can cause a integer overflow and bypass security checks performed by system call handlers. The impact would depend on the underlying system call and can range from denial of service to information leak to memory corruption resulting in code execution within the ker...

7.8CVSS8AI score0.00062EPSS

CVE•added 2020/05/11 11:15 p.m.•54 views

CVE-2020-10023

The shell subsystem contains a buffer overflow, whereby an adversary with physical access to the device is able to cause a memory corruption, resulting in denial of service or possibly code execution within the Zephyr kernel. See NCC-NCC-019 This issue affects: zephyrproject-rtos zephyr version 1.1...

6.9CVSS7.1AI score0.00099EPSS

CVE•added 2021/10/05 9:15 p.m.•38 views

CVE-2021-3510

Zephyr JSON decoder incorrectly decodes array of array. Zephyr versions >= >1.14.0, >= >2.5.0 contain Attempt to Access Child of a Non-structure Pointer (CWE-588). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-289f-7mw3-2qf4

7.5CVSS7.5AI score0.00334EPSS