Vulnerabilities > Zephyrproject
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-12 | CVE-2021-3323 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr 2.4.0 Integer Underflow in 6LoWPAN IPHC Header Uncompression in Zephyr. | 7.5 |
| 2021-10-12 | CVE-2021-3330 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr 2.4.0 RCE/DOS: Linked-list corruption leading to large out-of-bounds write while sorting for forged fragment list in Zephyr. | 5.8 |
| 2021-10-05 | CVE-2021-3319 | NULL Pointer Dereference vulnerability in Zephyrproject Zephyr 2.4.0 DOS: Incorrect 802154 Frame Validation for Omitted Source / Dest Addresses. | 9.8 |
| 2021-10-05 | CVE-2021-3436 | Unspecified vulnerability in Zephyrproject Zephyr 1.14.2/2.4.0/2.5.0 BT: Possible to overwrite an existing bond during keys distribution phase when the identity address of the bond is known. | 6.4 |
| 2021-10-05 | CVE-2021-3510 | Unspecified vulnerability in Zephyrproject Zephyr Zephyr JSON decoder incorrectly decodes array of array. | 5.0 |
| 2021-10-05 | CVE-2021-3581 | Improper Validation of Specified Quantity in Input vulnerability in Zephyrproject Zephyr 2.5.0/2.5.1 Buffer Access with Incorrect Length Value in zephyr. | 8.8 |
| 2021-10-05 | CVE-2021-3625 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Buffer overflow in Zephyr USB DFU DNLOAD. | 7.5 |
| 2021-05-25 | CVE-2020-10064 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Improper Input Frame Validation in ieee802154 Processing. | 7.5 |
| 2021-05-25 | CVE-2020-10065 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Missing Size Checks in Bluetooth HCI over SPI. | 8.8 |
| 2021-05-25 | CVE-2020-10066 | NULL Pointer Dereference vulnerability in Zephyrproject Zephyr Incorrect Error Handling in Bluetooth HCI core. | 3.3 |