| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-8798 | Bluetooth: classic: avdtp: missing buffer length check | zephyrproject-rtos | Zephyr | High | 7.5 | 2024-12-15 23:23:31 | Deep Dive |
| CVE-2024-11263 | arch: riscv: userspace: potential security risk when CONFIG_RISCV_GP=y | zephyrproject-rtos | Zephyr | Critical | 9.3 | 2024-11-15 22:53:59 | Deep Dive |
| CVE-2024-6444 | Bluetooth: ots: missing buffer length check | zephyrproject-rtos | Zephyr | Medium | 6.3 | 2024-10-04 06:14:26 | Deep Dive |
| CVE-2024-6443 | zephyr: out-of-bound read in utf8_trunc | zephyrproject-rtos | Zephyr | Medium | 6.3 | 2024-10-04 05:56:30 | Deep Dive |
| CVE-2024-6442 | Bluetooth: ASCS Unchecked tailroom of the response buffer | zephyrproject-rtos | Zephyr | Medium | 6.3 | 2024-10-04 05:36:10 | Deep Dive |
| CVE-2024-6259 | BT: HCI: adv_ext_report Improper discarding in adv_ext_report | zephyrproject-rtos | Zephyr | High | 7.6 | 2024-09-13 20:17:59 | Deep Dive |
| CVE-2024-6137 | BT: Classic: SDP OOB access in get_att_search_list | zephyrproject-rtos | Zephyr | High | 7.6 | 2024-09-13 20:06:45 | Deep Dive |
| CVE-2024-6135 | BT:Classic: Multiple missing buf length checks | zephyrproject-rtos | Zephyr | High | 7.6 | 2024-09-13 19:51:32 | Deep Dive |
| CVE-2024-5931 | BT: Unchecked user input in bap_broadcast_assistant | zephyrproject-rtos | Zephyr | Medium | 6.3 | 2024-09-13 19:41:58 | Deep Dive |
| CVE-2024-6258 | BT: Missing length checks of net_buf in rfcomm_handle_data | zephyrproject-rtos | Zephyr | Medium | 6.8 | 2024-09-13 19:05:54 | Deep Dive |
| CVE-2024-5754 | BT: Encryption procedure host vulnerability | zephyrproject-rtos | Zephyr | High | 8.2 | 2024-09-13 18:50:05 | Deep Dive |
| CVE-2024-4785 | BT: Missing Check in LL_CONNECTION_UPDATE_IND Packet Leads to Division by Zero | zephyrproject-rtos | Zephyr | High | 7.6 | 2024-08-19 22:10:05 | Deep Dive |
| CVE-2024-3332 | bt: host/smp: DoS caused by null pointer dereference | zephyrproject-rtos | Zephyr | Medium | 6.5 | 2024-07-03 16:44:28 | Deep Dive |
| CVE-2024-3077 | Bluetooth: integer underflow in gatt_find_info_rsp | zephyrproject-rtos | Zephyr | Medium | 6.8 | 2024-03-29 05:06:18 | Deep Dive |
| CVE-2023-7060 | Missing Security Control in Zephyr OS IP Packet Handling | zephyrproject-rtos | Zephyr | High | 8.6 | 2024-03-15 18:12:36 | Deep Dive |
| CVE-2023-6881 | fs: fuse: buffer overflow vulnerability in the Zephyr FS | zephyrproject-rtos | Zephyr | High | 7.3 | 2024-02-20 18:25:19 | Deep Dive |
| CVE-2024-1638 | Bluetooth characteristic LESC security requirement not enforced without additional flags | zephyrproject-rtos | Zephyr | High | 8.2 | 2024-02-19 21:19:52 | Deep Dive |
| CVE-2023-5779 | can: out of bounds in remove_rx_filter function | zephyrproject-rtos | Zephyr | Medium | 4.4 | 2024-02-18 07:46:42 | Deep Dive |
| CVE-2023-6249 | ipm: signed to unsigned conversion problem in esp32_ipm_send | zephyrproject-rtos | Zephyr | High | 8.0 | 2024-02-18 07:27:13 | Deep Dive |
| CVE-2023-6749 | Unchecked user input length in the Zephyr Settings Shell | zephyrproject-rtos | Zephyr | High | 8.0 | 2024-02-18 07:04:36 | Deep Dive |