Vulnerabilities > Busybox > Busybox > 1.29.1

DATE CVE VULNERABILITY TITLE RISK
2021-11-15 CVE-2021-42385 Use After Free vulnerability in multiple products
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function
network
low complexity
busybox fedoraproject CWE-416
7.2
7.2
2021-11-15 CVE-2021-42386 Use After Free vulnerability in multiple products
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function
network
low complexity
busybox fedoraproject CWE-416
7.2
7.2
2019-01-09 CVE-2019-5747 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in BusyBox through 1.30.0.
network
low complexity
busybox canonical CWE-125
7.5
7.5
2019-01-09 CVE-2018-20679 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in BusyBox before 1.30.0.
network
low complexity
busybox canonical CWE-125
5.0
5.0
2018-06-26 CVE-2018-1000500 Improper Certificate Validation vulnerability in Busybox
Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution.
network
busybox CWE-295
6.8
6.8