Vulnerabilities > Zephyrproject > Zephyr > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-29 | CVE-2023-6881 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Possible buffer overflow in is_mount_point | 9.8 |
| 2024-02-19 | CVE-2024-1638 | Unspecified vulnerability in Zephyrproject Zephyr The documentation specifies that the BT_GATT_PERM_READ_LESC and BT_GATT_PERM_WRITE_LESC defines for a Bluetooth characteristic: Attribute read/write permission with LE Secure Connection encryption. | 9.1 |
| 2024-02-18 | CVE-2023-6249 | Incorrect Type Conversion or Cast vulnerability in Zephyrproject Zephyr Signed to unsigned conversion esp32_ipm_send | 9.8 |
| 2024-02-18 | CVE-2023-5779 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr can: out of bounds in remove_rx_filter function | 9.8 |
| 2024-02-18 | CVE-2023-6749 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Unchecked length coming from user input in settings shell | 9.8 |
| 2023-11-21 | CVE-2023-5055 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Possible variant of CVE-2021-3434 in function le_ecred_reconf_req. | 9.8 |
| 2023-10-13 | CVE-2023-4257 | Incorrect Calculation of Buffer Size vulnerability in Zephyrproject Zephyr Unchecked user input length in /subsys/net/l2/wifi/wifi_shell.c can cause buffer overflows. | 9.8 |
| 2023-10-06 | CVE-2023-3725 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerability in the Zephyr CAN bus subsystem | 9.8 |
| 2023-09-27 | CVE-2023-4264 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem. | 9.6 |
| 2023-09-27 | CVE-2023-4260 | Off-by-one Error vulnerability in Zephyrproject Zephyr Potential off-by-one buffer overflow vulnerability in the Zephyr fuse file system. | 10.0 |