CVE-2017-14201
- EPSS 0.7%
- Veröffentlicht 29.08.2019 01:15:10
- Zuletzt bearbeitet 21.11.2024 03:12:20
Use After Free vulnerability in the Zephyr shell allows a serial or telnet connected user to cause denial of service, and possibly remote code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.
CVE-2017-14202
- EPSS 0.16%
- Veröffentlicht 29.08.2019 01:15:10
- Zuletzt bearbeitet 21.11.2024 03:12:21
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the shell component of Zephyr allows a serial or telnet connected user to cause a crash, possibly with arbitrary code execution. This issue affects: Zephyr shell...
CVE-2017-14199
- EPSS 0.55%
- Veröffentlicht 12.04.2019 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:12:20
A buffer overflow has been found in the Zephyr Project's getaddrinfo() implementation in 1.9.0 and 1.10.0.
CVE-2018-1000800
- EPSS 0.37%
- Veröffentlicht 06.09.2018 17:29:02
- Zuletzt bearbeitet 21.11.2024 03:40:22
zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in sys_ring_buf_put(), sys_ring_buf_get() that can result in CPU Page Fault (error code 0x00000010). This attack appear to be exploitable via a malicious application call...