Zephyrproject: >> Zephyr >> 1.10.0 Security Vulnerabilities
Use After Free vulnerability in the Zephyr shell allows a serial or telnet connected user to cause denial of service, and possibly remote code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.
CVSS Score
7.8
EPSS Score
0.007
Published
2019-08-29
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the shell component of Zephyr allows a serial or telnet connected user to cause a crash, possibly with arbitrary code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.
CVSS Score
7.8
EPSS Score
0.002
Published
2019-08-29
A buffer overflow has been found in the Zephyr Project's getaddrinfo() implementation in 1.9.0 and 1.10.0.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-04-12
Page 9