Vulnerabilities > Zephyrproject > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-13 | CVE-2024-6259 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr BT: HCI: adv_ext_report Improper discarding in adv_ext_report | 6.5 |
| 2024-09-13 | CVE-2024-5931 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr BT: Unchecked user input in bap_broadcast_assistant | 6.5 |
| 2024-09-13 | CVE-2024-6135 | Divide By Zero vulnerability in Zephyrproject Zephyr BT:Classic: Multiple missing buf length checks | 6.5 |
| 2024-09-13 | CVE-2024-6137 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr BT: Classic: SDP OOB access in get_att_search_list | 6.5 |
| 2024-09-13 | CVE-2024-5754 | Unspecified vulnerability in Zephyrproject Zephyr BT: Encryption procedure host vulnerability low complexity zephyrproject | 6.5 |
| 2024-09-13 | CVE-2024-6258 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr BT: Missing length checks of net_buf in rfcomm_handle_data | 6.5 |
| 2023-09-25 | CVE-2023-4258 | Unspecified vulnerability in Zephyrproject Zephyr 1.14.1/1.6.0/2.0.0 In Bluetooth mesh implementation If provisionee has a public key that is sent OOB then during provisioning it can be sent back and will be accepted by provisionee. low complexity zephyrproject | 6.5 |
| 2023-08-12 | CVE-2023-4265 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerabilities in the following locations: https://github.com/zephyrproject-rtos/zephyr/blob/main/drivers/usb/device/usb_dc_native_posix.c#L359 https://github.com/zephyrproject-rtos/zephyr/blob/main/drivers/usb/device/usb_dc_native_posix.c#L359 https://github.com/zephyrproject-rtos/zephyr/blob/main/subsys/usb/device/class/netusb/function_rndis... | 6.8 |
| 2023-02-26 | CVE-2021-3329 | Improper Initialization vulnerability in Zephyrproject Zephyr 2.4.0 Lack of proper validation in HCI Host stack initialization can cause a crash of the bluetooth stack | 6.5 |
| 2023-01-25 | CVE-2023-0396 | Out-of-bounds Read vulnerability in Zephyrproject Zephyr A malicious / defective bluetooth controller can cause buffer overreads in the most functions that process HCI command responses. | 6.8 |