Vulnerabilities > Zephyrproject > Zephyr > 2.4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-29 | CVE-2024-3077 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr An malicious BLE device can crash BLE victim device by sending malformed gatt packet | 6.5 |
| 2024-03-15 | CVE-2023-7060 | Unspecified vulnerability in Zephyrproject Zephyr Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address. | 7.5 |
| 2024-02-29 | CVE-2023-6881 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Possible buffer overflow in is_mount_point | 9.8 |
| 2024-02-19 | CVE-2024-1638 | Unspecified vulnerability in Zephyrproject Zephyr The documentation specifies that the BT_GATT_PERM_READ_LESC and BT_GATT_PERM_WRITE_LESC defines for a Bluetooth characteristic: Attribute read/write permission with LE Secure Connection encryption. | 9.1 |
| 2024-02-18 | CVE-2023-5779 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr can: out of bounds in remove_rx_filter function | 9.8 |
| 2024-02-18 | CVE-2023-6249 | Incorrect Type Conversion or Cast vulnerability in Zephyrproject Zephyr Signed to unsigned conversion esp32_ipm_send | 9.8 |
| 2024-02-18 | CVE-2023-6749 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Unchecked length coming from user input in settings shell | 9.8 |
| 2023-11-21 | CVE-2023-5055 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Possible variant of CVE-2021-3434 in function le_ecred_reconf_req. | 9.8 |
| 2023-11-21 | CVE-2023-4424 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device. | 8.8 |
| 2023-10-26 | CVE-2023-5139 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerability at the following location in the Zephyr STM32 Crypto driver | 7.8 |