Zephyr@2.4.0 Security Vulnerabilities and Issues — Zephyr@2.4.0 CVE List

Lucene search

ZephyrprojectZephyr2.4.0

2 matches found

CVE•added 2023/02/26 7:15 a.m.•36 views

CVE-2021-3329

Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack

9.6CVSS6.8AI score0.00052EPSS

CVE•added 2021/10/05 9:15 p.m.•36 views

CVE-2021-3436

BT: Possible to overwrite an existing bond during keys distribution phase when the identity address of the bond is known. Zephyr versions >= 1.14.2, >= 2.4.0, >= 2.5.0 contain Use of Multiple Resources with Duplicate Identifier (CWE-694). For more information, see https://github.com/zephyr...

6.5CVSS5.5AI score0.00315EPSS