Page 20 of 101 results (0.006 seconds)

CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0

Out-of-bounds Write in the USB Mass Storage memoryWrite handler with unaligned Sizes See NCC-ZEP-024, NCC-ZEP-025, NCC-ZEP-026 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later versions. version 2.1.0 and later versions. Una Escritura fuera de límites en el Almacenamiento Masivo USB en el manejador memoryWrite con Tamaños no alineados. Consulte NCC-ZEP-024, NCC-ZEP-025, NCC-ZEP-026. Este problema afecta a: zephyrproject-rtos zephyr versión 1.14.1 y versiones posteriores. Versión 2.1.0 y versiones posteriores. • https://docs.zephyrproject.org/latest/security/vulnerabilities.html#cve-2020-10021 https://github.com/zephyrproject-rtos/zephyr/pull/23240 https://github.com/zephyrproject-rtos/zephyr/pull/23455 https://github.com/zephyrproject-rtos/zephyr/pull/23456 https://zephyrprojectsec.atlassian.net/browse/ZEPSEC-26 • CWE-787: Out-of-bounds Write •

CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0

USB DFU has a potential buffer overflow where the requested length (wLength) is not checked against the buffer size. This could be used by a malicious USB host to exploit the buffer overflow. See NCC-ZEP-002 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later versions. version 2.1.0 and later versions. USB DFU presenta un potencial desbordamiento del búfer donde la longitud requerida (wLength) no es comparada con el tamaño del búfer. Esto podría ser usado por un host USB malicioso para explotar el desbordamiento del búfer. • https://docs.zephyrproject.org/latest/security/vulnerabilities.html#cve-2020-10019 https://github.com/zephyrproject-rtos/zephyr/pull/23190 https://github.com/zephyrproject-rtos/zephyr/pull/23457 https://github.com/zephyrproject-rtos/zephyr/pull/23460 https://zephyrprojectsec.atlassian.net/browse/ZEPSEC-25 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

Use After Free vulnerability in the Zephyr shell allows a serial or telnet connected user to cause denial of service, and possibly remote code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all. Usar la vulnerabilidad Después de la liberación en el shell de Zephyr permite que un usuario conectado en serie o telnet cause la denegación de servicio, y posiblemente la ejecución remota de código. Este problema afecta a: las versiones del proyectil Zephyr anteriores a 1.14.0 en todas. • https://docs.zephyrproject.org/1.14.0/releases/release-notes-1.14.html https://github.com/zephyrproject-rtos/zephyr/pull/13260 https://zephyrprojectsec.atlassian.net/browse/ZEPSEC-17 • CWE-416: Use After Free •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the shell component of Zephyr allows a serial or telnet connected user to cause a crash, possibly with arbitrary code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all. Una Restricción Inapropiada de Operaciones dentro de los Límites de una vulnerabilidad del Búfer de la Memoria en el componente shell de Zephyr, permite a un usuario conectado serial o telnet causar un bloqueo, posiblemente con la ejecución de código arbitrario. Este problema afecta a: shell de Zephyr versiones anteriores a 1.14.0 sobre todo. • https://docs.zephyrproject.org/1.14.0/releases/release-notes-1.14.html https://github.com/zephyrproject-rtos/zephyr/pull/13048 https://zephyrprojectsec.atlassian.net/browse/ZEPSEC-18 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0

A buffer overflow has been found in the Zephyr Project's getaddrinfo() implementation in 1.9.0 and 1.10.0. Una vulnerabilidad de tipo buffer overflow ha sido encontrada en la implementación de getaddrinfo() de Zephyr Project, versiones 1.9.0 y 1.10.0. • https://github.com/zephyrproject-rtos/zephyr/pull/6158 https://zephyrprojectsec.atlassian.net/browse/ZEPSEC-12 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •