Vulnerabilities > Yoctoproject > Yocto > 3.1

DATE CVE VULNERABILITY TITLE RISK
2023-03-07 CVE-2023-20623 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
In ion, there is a possible escalation of privilege due to improper locking.
local
high complexity
google yoctoproject CWE-367
6.4
6.4
2022-12-05 CVE-2022-32631 Out-of-bounds Write vulnerability in multiple products
In Wi-Fi, there is a possible out of bounds write due to improper input validation.
local
low complexity
google yoctoproject CWE-787
6.7
6.7
2022-12-05 CVE-2022-32632 Out-of-bounds Write vulnerability in multiple products
In Wi-Fi, there is a possible out of bounds write due to improper input validation.
local
low complexity
google yoctoproject CWE-787
6.7
6.7
2022-12-05 CVE-2022-32633 Improper Privilege Management vulnerability in multiple products
In Wi-Fi, there is a possible memory access violation due to a logic error.
local
low complexity
google yoctoproject CWE-269
6.7
6.7
2022-09-06 CVE-2022-26447 Out-of-bounds Write vulnerability in multiple products
In BT firmware, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google yoctoproject CWE-787
critical
 9.8
9.8