Vulnerabilities > Denx > U Boot

DATE CVE VULNERABILITY TITLE RISK
2018-11-20 CVE-2018-18440 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Denx U-Boot
DENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overflow via a crafted kernel image because filesystem loading is mishandled.
local
low complexity
denx CWE-119
7.2
7.2
2018-11-20 CVE-2018-18439 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Denx U-Boot
DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP server because TFTP traffic is mishandled.
network
low complexity
denx CWE-119
critical
 9.8
9.8
2018-07-24 CVE-2017-3226 Cryptographic Issues vulnerability in Denx U-Boot
Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file.
local
denx CWE-310
4.4
4.4
2018-07-24 CVE-2017-3225 Cryptographic Issues vulnerability in Denx U-Boot
Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file.
local
low complexity
denx CWE-310
2.1
2.1
2018-06-26 CVE-2018-1000205 Improper Input Validation vulnerability in Denx U-Boot
U-Boot contains a CWE-20: Improper Input Validation vulnerability in Verified boot signature validation that can result in Bypass verified boot.
network
denx CWE-20
4.3
4.3