Vulnerabilities > Zephyrproject

DATE CVE VULNERABILITY TITLE RISK
2021-10-12 CVE-2021-3321 Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr 2.4.0
Integer Underflow in Zephyr in IEEE 802154 Fragment Reassembly Header Removal.
low complexity
zephyrproject CWE-191
5.8
2021-10-12 CVE-2021-3322 NULL Pointer Dereference vulnerability in Zephyrproject Zephyr
Unexpected Pointer Aliasing in IEEE 802154 Fragment Reassembly in Zephyr.
low complexity
zephyrproject CWE-476
3.3
2021-10-12 CVE-2021-3323 Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr 2.4.0
Integer Underflow in 6LoWPAN IPHC Header Uncompression in Zephyr.
network
low complexity
zephyrproject CWE-191
7.5
2021-10-12 CVE-2021-3330 Out-of-bounds Write vulnerability in Zephyrproject Zephyr 2.4.0
RCE/DOS: Linked-list corruption leading to large out-of-bounds write while sorting for forged fragment list in Zephyr.
low complexity
zephyrproject CWE-787
5.8
2021-10-05 CVE-2021-3319 NULL Pointer Dereference vulnerability in Zephyrproject Zephyr 2.4.0
DOS: Incorrect 802154 Frame Validation for Omitted Source / Dest Addresses.
network
low complexity
zephyrproject CWE-476
7.5
2021-10-05 CVE-2021-3436 Unspecified vulnerability in Zephyrproject Zephyr 1.14.2/2.4.0/2.5.0
BT: Possible to overwrite an existing bond during keys distribution phase when the identity address of the bond is known.
network
low complexity
zephyrproject
6.4
2021-10-05 CVE-2021-3510 Unspecified vulnerability in Zephyrproject Zephyr
Zephyr JSON decoder incorrectly decodes array of array.
network
low complexity
zephyrproject
5.0
2021-10-05 CVE-2021-3581 Unspecified vulnerability in Zephyrproject Zephyr 2.5.0/2.5.1
Buffer Access with Incorrect Length Value in zephyr.
low complexity
zephyrproject
5.8
2021-10-05 CVE-2021-3625 Out-of-bounds Write vulnerability in Zephyrproject Zephyr
Buffer overflow in Zephyr USB DFU DNLOAD.
network
low complexity
zephyrproject CWE-787
7.5
2021-05-25 CVE-2020-10064 Out-of-bounds Write vulnerability in Zephyrproject Zephyr
Improper Input Frame Validation in ieee802154 Processing.
network
low complexity
zephyrproject CWE-787
7.5