Vulnerabilities > Zephyrproject > Zephyr > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-07 | CVE-2021-3835 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr 2.6.0/2.6.1/3.0.0 Buffer overflow in usb device class. | 8.8 |
| 2021-10-19 | CVE-2021-3454 | Reachable Assertion vulnerability in Zephyrproject Zephyr 2.4.0/2.5.0/2.5.1 Truncated L2CAP K-frame causes assertion failure. | 7.5 |
| 2021-10-19 | CVE-2021-3455 | Use After Free vulnerability in Zephyrproject Zephyr 2.4.0/2.5.0/2.5.1 Disconnecting L2CAP channel right after invalid ATT request leads freeze. | 7.5 |
| 2021-10-12 | CVE-2021-3321 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr 2.4.0 Integer Underflow in Zephyr in IEEE 802154 Fragment Reassembly Header Removal. | 8.8 |
| 2021-10-12 | CVE-2021-3330 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr 2.4.0 RCE/DOS: Linked-list corruption leading to large out-of-bounds write while sorting for forged fragment list in Zephyr. | 8.8 |
| 2021-10-05 | CVE-2021-3510 | Unspecified vulnerability in Zephyrproject Zephyr Zephyr JSON decoder incorrectly decodes array of array. | 7.5 |
| 2021-10-05 | CVE-2021-3581 | Improper Validation of Specified Quantity in Input vulnerability in Zephyrproject Zephyr 2.5.0/2.5.1 Buffer Access with Incorrect Length Value in zephyr. | 8.8 |
| 2021-05-25 | CVE-2020-10065 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Missing Size Checks in Bluetooth HCI over SPI. | 8.8 |
| 2021-05-25 | CVE-2020-13598 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr FS: Buffer Overflow when enabling Long File Names in FAT_FS and calling fs_stat. | 7.8 |
| 2021-05-25 | CVE-2020-13600 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr Malformed SPI in response for eswifi can corrupt kernel memory. | 7.6 |