Vulnerabilities > Zephyrproject > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-25 | CVE-2020-10065 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Missing Size Checks in Bluetooth HCI over SPI. | 8.8 |
| 2021-05-25 | CVE-2020-13600 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Malformed SPI in response for eswifi can corrupt kernel memory. | 7.2 |
| 2021-05-25 | CVE-2020-13601 | Out-of-bounds Read vulnerability in Zephyrproject Zephyr Possible read out of bounds in dns read. | 7.5 |
| 2020-06-05 | CVE-2020-10071 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr The Zephyr MQTT parsing code performs insufficient checking of the length field on publish messages, allowing a buffer overflow and potentially remote code execution. | 7.5 |
| 2020-06-05 | CVE-2020-10070 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr In the Zephyr Project MQTT code, improper bounds checking can result in memory corruption and possibly remote code execution. | 7.5 |
| 2020-06-05 | CVE-2020-10062 | Off-by-one Error vulnerability in Zephyrproject Zephyr An off-by-one error in the Zephyr project MQTT packet length decoder can result in memory corruption and possible remote code execution. | 7.5 |
| 2020-05-11 | CVE-2020-10067 | Integer Overflow or Wraparound vulnerability in Zephyrproject Zephyr 1.14.1/2.1.0 A malicious userspace application can cause a integer overflow and bypass security checks performed by system call handlers. | 7.2 |
| 2020-05-11 | CVE-2020-10027 | Incorrect Comparison vulnerability in Zephyrproject Zephyr 1.14.0/2.1.0 An attacker who has obtained code execution within a user thread is able to elevate privileges to that of the kernel. | 7.2 |
| 2020-05-11 | CVE-2020-10024 | Incorrect Comparison vulnerability in Zephyrproject Zephyr 1.14.2/2.1.0 The arm platform-specific code uses a signed integer comparison when validating system call numbers. | 7.2 |
| 2020-05-11 | CVE-2020-10022 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr 2.1.0/2.2.0 A malformed JSON payload that is received from an UpdateHub server may trigger memory corruption in the Zephyr OS. | 7.5 |