CVE-2021-3436
- EPSS 0.95%
- Veröffentlicht 05.10.2021 21:15:09
- Zuletzt bearbeitet 21.11.2024 06:21:30
BT: Possible to overwrite an existing bond during keys distribution phase when the identity address of the bond is known. Zephyr versions >= 1.14.2, >= 2.4.0, >= 2.5.0 contain Use of Multiple Resources with Duplicate Identifier (CWE-694). For more in...
CVE-2021-3510
- EPSS 0.93%
- Veröffentlicht 05.10.2021 21:15:09
- Zuletzt bearbeitet 21.11.2024 06:21:43
Zephyr JSON decoder incorrectly decodes array of array. Zephyr versions >= >1.14.0, >= >2.5.0 contain Attempt to Access Child of a Non-structure Pointer (CWE-588). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/adviso...
CVE-2021-3581
- EPSS 0.34%
- Veröffentlicht 05.10.2021 21:15:09
- Zuletzt bearbeitet 21.11.2024 06:21:53
Buffer Access with Incorrect Length Value in zephyr. Zephyr versions >= >=2.5.0 contain Buffer Access with Incorrect Length Value (CWE-805). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-8q65-5gqf-fmw...
CVE-2021-3625
- EPSS 2.28%
- Veröffentlicht 05.10.2021 21:15:09
- Zuletzt bearbeitet 21.11.2024 06:22:00
Buffer overflow in Zephyr USB DFU DNLOAD. Zephyr versions >= v2.5.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-c3gr-hgvr-f363
CVE-2021-3320
- EPSS 0.85%
- Veröffentlicht 25.05.2021 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:21:17
Type Confusion in 802154 ACK Frames Handling. Zephyr versions >= v2.4.0 contain NULL Pointer Dereference (CWE-476). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-27r3-rxch-2hm7
CVE-2020-10064
- EPSS 0.81%
- Veröffentlicht 25.05.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 04:54:44
Improper Input Frame Validation in ieee802154 Processing. Zephyr versions >= v1.14.2, >= v2.2.0 contain Stack-based Buffer Overflow (CWE-121), Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-rtos/zephy...
CVE-2020-10065
- EPSS 0.49%
- Veröffentlicht 25.05.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 04:54:44
Missing Size Checks in Bluetooth HCI over SPI. Zephyr versions >= v1.14.2, >= v2.2.0 contain Improper Handling of Length Parameter Inconsistency (CWE-130). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHS...
CVE-2020-10066
- EPSS 0.21%
- Veröffentlicht 25.05.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 04:54:44
Incorrect Error Handling in Bluetooth HCI core. Zephyr versions >= v1.14.2, >= v2.2.0 contain NULL Pointer Dereference (CWE-476). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-gc66-xfrc-24qr
CVE-2020-10069
- EPSS 0.38%
- Veröffentlicht 25.05.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 04:54:44
Zephyr Bluetooth unchecked packet data results in denial of service. Zephyr versions >= v1.14.2, >= v2.2.0 contain Improper Handling of Parameters (CWE-233). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/G...
CVE-2020-10072
- EPSS 0.2%
- Veröffentlicht 25.05.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 04:54:44
Improper Handling of Insufficient Permissions or Privileges in zephyr. Zephyr versions >= v1.14.2, >= v2.2.0 contain Improper Handling of Insufficient Permissions or Privileges (CWE-280). For more information, see https://github.com/zephyrproject-rto...