8.2
CVE-2024-5754
- EPSS 0.31%
- Veröffentlicht 13.09.2024 19:15:17
- Zuletzt bearbeitet 17.09.2025 07:15:41
- Quelle vulnerabilities@zephyrproject.
- CVE-Watchlists
- Unerledigt
BT: Encryption procedure host vulnerability
BT: Encryption procedure host vulnerability
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zephyrproject ≫ Zephyr Version < 3.6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.31% | 0.224 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
| vulnerabilities@zephyrproject.org | 8.2 | 2.8 | 4.7 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
|
CWE-807 Reliance on Untrusted Inputs in a Security Decision
The product uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism.
https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-gvv5-66hw-5qrc