Show filters
129 Total Results
Displaying 31-40 of 129
Sort by:
Attacker Value
Unknown

CVE-2023-6749

Disclosure Date: February 18, 2024 (last updated January 23, 2025)
Unchecked length coming from user input in settings shell
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-31237

Disclosure Date: December 29, 2023 (last updated January 06, 2024)
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.9.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-5055

Disclosure Date: November 21, 2023 (last updated December 02, 2023)
Possible variant of CVE-2021-3434 in function le_ecred_reconf_req.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4424

Disclosure Date: November 21, 2023 (last updated November 30, 2023)
An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device.
Attack Vector: Adjacent NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-5139

Disclosure Date: October 26, 2023 (last updated November 04, 2023)
Potential buffer overflow vulnerability at the following location in the Zephyr STM32 Crypto driver
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-5753

Disclosure Date: October 25, 2023 (last updated February 14, 2025)
Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hci_core.c
Attack Vector: Adjacent NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4257

Disclosure Date: October 13, 2023 (last updated October 19, 2023)
Unchecked user input length in /subsys/net/l2/wifi/wifi_shell.c can cause buffer overflows.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4263

Disclosure Date: October 13, 2023 (last updated October 19, 2023)
Potential buffer overflow vulnerability in the Zephyr IEEE 802.15.4 nRF 15.4 driver
Attack Vector: Adjacent NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-5563

Disclosure Date: October 13, 2023 (last updated October 19, 2023)
The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIG_CAN_AUTO_BUS_OFF_RECOVERY=y. This results in calling k_sleep() in IRQ context, causing a fatal exception.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-3725

Disclosure Date: October 06, 2023 (last updated October 11, 2023)
Potential buffer overflow vulnerability in the Zephyr CAN bus subsystem
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >