Vulnerabilities > CVE-2021-3430 - Reachable Assertion vulnerability in Zephyrproject Zephyr

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

zephyrproject

CWE-617

NVD

Published: 2022-06-28

Updated: 2024-11-21

Summary

Assertion reachable with repeated LL_CONNECTION_PARAM_REQ. Zephyr versions >= v1.14 contain Reachable Assertion (CWE-617). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-46h3-hjcq-2jjr

Vulnerable Configurations

Part	Description	Count
OS	Zephyrproject Zephyrproject Zephyr 1.14.0 Zephyrproject Zephyr 1.14.1 Zephyrproject Zephyr 1.14.2 Zephyrproject Zephyr 1.14.3 Zephyrproject Zephyr 2.0.0 Zephyrproject Zephyr 2.1.0 Zephyrproject Zephyr 2.2.0 Zephyrproject Zephyr 2.3.0 Zephyrproject Zephyr 2.4.0 Zephyrproject Zephyr 2.5.0 Zephyrproject Zephyr 2.5.1	33

Common Weakness Enumeration (CWE)

CWE-617 - Reachable Assertion

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References