Vulnerabilities > Zephyrproject > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-21 | CVE-2023-5055 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Possible variant of CVE-2021-3434 in function le_ecred_reconf_req. | 9.8 |
| 2023-10-13 | CVE-2023-4257 | Incorrect Calculation of Buffer Size vulnerability in Zephyrproject Zephyr Unchecked user input length in /subsys/net/l2/wifi/wifi_shell.c can cause buffer overflows. | 9.8 |
| 2023-10-06 | CVE-2023-3725 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerability in the Zephyr CAN bus subsystem | 9.8 |
| 2023-09-27 | CVE-2023-4260 | Off-by-one Error vulnerability in Zephyrproject Zephyr Potential off-by-one buffer overflow vulnerability in the Zephyr fuse file system. | 10.0 |
| 2023-09-27 | CVE-2023-4264 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem. | 9.6 |
| 2023-01-25 | CVE-2022-3806 | Double Free vulnerability in Zephyrproject Zephyr Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer. | 9.8 |
| 2022-12-09 | CVE-2022-2993 | Unspecified vulnerability in Zephyrproject Zephyr There is an error in the condition of the last if-statement in the function smp_check_keys. | 9.8 |
| 2021-10-05 | CVE-2021-3319 | NULL Pointer Dereference vulnerability in Zephyrproject Zephyr 2.4.0 DOS: Incorrect 802154 Frame Validation for Omitted Source / Dest Addresses. | 9.8 |