Vulnerabilities > Yoctoproject > Yocto > 4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-15 | CVE-2023-20718 | Improper Input Validation vulnerability in multiple products In vcu, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2023-05-15 | CVE-2023-20721 | Improper Input Validation vulnerability in multiple products In isp, there is a possible out of bounds write due to improper input validation. | 6.7 |
| 2023-03-07 | CVE-2023-20623 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products In ion, there is a possible escalation of privilege due to improper locking. | 6.4 |