Vulnerabilities > Yoctoproject

DATE CVE VULNERABILITY TITLE RISK
2023-05-15 CVE-2023-20718 Improper Input Validation vulnerability in multiple products
In vcu, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google yoctoproject CWE-20
6.7
6.7
2023-05-15 CVE-2023-20721 Improper Input Validation vulnerability in multiple products
In isp, there is a possible out of bounds write due to improper input validation.
local
low complexity
google yoctoproject CWE-20
6.7
6.7
2023-03-07 CVE-2023-20623 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
In ion, there is a possible escalation of privilege due to improper locking.
local
high complexity
google yoctoproject CWE-367
6.4
6.4
2022-12-05 CVE-2022-32631 Out-of-bounds Write vulnerability in multiple products
In Wi-Fi, there is a possible out of bounds write due to improper input validation.
local
low complexity
google yoctoproject CWE-787
6.7
6.7
2022-12-05 CVE-2022-32632 Out-of-bounds Write vulnerability in multiple products
In Wi-Fi, there is a possible out of bounds write due to improper input validation.
local
low complexity
google yoctoproject CWE-787
6.7
6.7
2022-12-05 CVE-2022-32633 Improper Privilege Management vulnerability in multiple products
In Wi-Fi, there is a possible memory access violation due to a logic error.
local
low complexity
google yoctoproject CWE-269
6.7
6.7
2022-09-06 CVE-2022-26447 Out-of-bounds Write vulnerability in multiple products
In BT firmware, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google yoctoproject CWE-787
critical
 9.8
9.8