Vulnerabilities > Zephyrproject > Zephyr
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-13 | CVE-2024-6258 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr BT: Missing length checks of net_buf in rfcomm_handle_data | 6.5 |
| 2024-08-19 | CVE-2024-4785 | Divide By Zero vulnerability in Zephyrproject Zephyr BT: Missing Check in LL_CONNECTION_UPDATE_IND Packet Leads to Division by Zero | 6.5 |
| 2024-07-03 | CVE-2024-3332 | NULL Pointer Dereference vulnerability in Zephyrproject Zephyr A malicious BLE device can send a specific order of packet sequence to cause a DoS attack on the victim BLE device | 6.5 |
| 2024-03-29 | CVE-2024-3077 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr An malicious BLE device can crash BLE victim device by sending malformed gatt packet | 6.5 |
| 2024-03-15 | CVE-2023-7060 | Unspecified vulnerability in Zephyrproject Zephyr Zephyr OS IP packet handling does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.01 or the destination address. | 7.5 |
| 2024-02-29 | CVE-2023-6881 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Possible buffer overflow in is_mount_point | 9.8 |
| 2024-02-19 | CVE-2024-1638 | Unspecified vulnerability in Zephyrproject Zephyr The documentation specifies that the BT_GATT_PERM_READ_LESC and BT_GATT_PERM_WRITE_LESC defines for a Bluetooth characteristic: Attribute read/write permission with LE Secure Connection encryption. | 9.1 |
| 2024-02-18 | CVE-2023-5779 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr can: out of bounds in remove_rx_filter function | 9.8 |
| 2024-02-18 | CVE-2023-6249 | Incorrect Type Conversion or Cast vulnerability in Zephyrproject Zephyr Signed to unsigned conversion esp32_ipm_send | 9.8 |
| 2024-02-18 | CVE-2023-6749 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Unchecked length coming from user input in settings shell | 9.8 |