Vulnerabilities > Zephyrproject > Zephyr > 3.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-21 | CVE-2023-4424 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device. | 8.8 |
| 2023-10-26 | CVE-2023-5139 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerability at the following location in the Zephyr STM32 Crypto driver | 7.8 |
| 2023-09-27 | CVE-2023-5184 | Incorrect Conversion between Numeric Types vulnerability in Zephyrproject Zephyr Two potential signed to unsigned conversion errors and buffer overflow vulnerabilities at the following locations in the Zephyr IPM drivers. | 8.8 |
| 2023-08-12 | CVE-2023-4265 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerabilities in the following locations: https://github.com/zephyrproject-rtos/zephyr/blob/main/drivers/usb/device/usb_dc_native_posix.c#L359 https://github.com/zephyrproject-rtos/zephyr/blob/main/drivers/usb/device/usb_dc_native_posix.c#L359 https://github.com/zephyrproject-rtos/zephyr/blob/main/subsys/usb/device/class/netusb/function_rndis... | 6.8 |
| 2022-02-07 | CVE-2021-3835 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr 2.6.0/2.6.1/3.0.0 Buffer overflow in usb device class. | 5.8 |