| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-4263 | Potential buffer overflow vulnerability in the Zephyr IEEE 802.15.4 nRF 15.4 driver | zephyrproject-rtos | Zephyr | High | 7.6 | 2023-10-13 20:42:12 | Deep Dive |
| CVE-2023-5563 | Zephyr 安全漏洞 | zephyrproject-rtos | Zephyr | High | 7.1 | 2023-10-12 23:11:18 | Deep Dive |
| CVE-2023-3725 | Potential buffer overflow vulnerability in the Zephyr CANbus subsystem | zephyrproject-rtos | Zephyr | High | 7.6 | 2023-10-06 20:10:12 | Deep Dive |
| CVE-2023-5184 | Potential signed to unsigned conversion errors and buffer overflow vulnerabilities in the Zephyr IPM driver | zephyrproject-rtos | Zephyr | High | 7.0 | 2023-09-27 17:26:52 | Deep Dive |
| CVE-2023-4260 | Potential off-by-one buffer overflow vulnerability in the Zephyr FS subsystem | zephyrproject-rtos | Zephyr | Medium | 6.3 | 2023-09-26 19:23:48 | Deep Dive |
| CVE-2023-4264 | Potential buffer overflow vulnerabilities in the Zephyr Bluetooth subsystem | zephyrproject-rtos | Zephyr | High | 7.1 | 2023-09-26 18:34:53 | Deep Dive |
| CVE-2023-4259 | Potential buffer overflow vulnerabilities in the Zephyr eS-WiFi driver | zephyrproject-rtos | Zephyr | High | 7.1 | 2023-09-25 23:05:41 | Deep Dive |
| CVE-2023-4258 | bt: mesh: vulnerability in provisioning protocol implementation on provisionee side | zephyrproject-rtos | Zephyr | High | 8.6 | 2023-09-25 21:46:37 | Deep Dive |
| CVE-2023-4265 | Buffer overflow in Zephyr USB | zephyrproject-rtos | Zephyr | Medium | 6.4 | 2023-08-12 22:09:21 | Deep Dive |
| CVE-2023-1901 | HCI send_sync Dangling Semaphore Reference Re-use | zephyrproject-rtos | Zephyr | Medium | 5.9 | 2023-07-10 04:37:33 | Deep Dive |
| CVE-2023-2234 | BT HCI host union variant confusion | zephyrproject-rtos | Zephyr | Medium | 6.8 | 2023-07-10 04:33:35 | Deep Dive |
| CVE-2023-1902 | HCI Connection Creation Dangling State Reference Re-use | zephyrproject-rtos | Zephyr | Medium | 5.9 | 2023-07-10 04:30:14 | Deep Dive |
| CVE-2023-0359 | ipv6: Missing ipv6 nullptr-check in handle_ra_input | zephyrproject-rtos | Zephyr | Medium | 5.9 | 2023-07-10 04:21:21 | Deep Dive |
| CVE-2023-34373 | WordPress Zephyr Project Manager Plugin <= 3.3.93 is vulnerable to Cross Site Request Forgery (CSRF) | Dylan James | Zephyr Project Manager | Medium | 5.4 | 2023-06-19 12:33:32 | Deep Dive |
| CVE-2023-0779 | net: shell: Improper input validation | zephyrproject-rtos | zephyr | Medium | 6.7 | 2023-05-30 00:00:00 | Deep Dive |
| CVE-2021-3329 | DOS: Incorrect handling of the initial HCI ACL_MTU handshake packet leads to crash of bluetooth host layer | zephyrproject-rtos | zephyr | Critical | 9.6 | 2023-02-26 00:00:00 | Deep Dive |
| CVE-2022-3806 | Bluetooth HCI Error Handling Double Free | zephyrproject-rtos | zephyr | 超危 | - | 2023-01-19 00:00:00 | Deep Dive |
| CVE-2023-0396 | Buffer Overreads in Bluetooth HCI | zephyrproject-rtos | zephyr | 中危 | - | 2023-01-19 00:00:00 | Deep Dive |
| CVE-2023-0397 | DoS: Invalid Initialization in le_read_buffer_size_complete | zephyrproject-rtos | zephyr | Critical | 9.6 | 2023-01-19 00:00:00 | Deep Dive |
| CVE-2021-3966 | Usb bluetooth device ACL read cb buffer overflow | zephyrproject-rtos | zephyr | Critical | 9.6 | 2023-01-11 00:00:00 | Deep Dive |