Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP server because TFTP traffic is mishandled. Also, local exploitation can occur via a crafted kernel image.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DENX Software Engineering Das U-Boot 缓冲区错误漏洞
Vulnerability Description
DENX Software Engineering Das U-Boot是德国DENX Software Engineering公司的一套可以从AES加密文件读取设备配置的引导加载程序。 DENX Software Engineering Das U-Boot中的network image boot存在缓冲区溢出漏洞,该漏洞源于程序没有正确执行边界检查。本地攻击者可利用该漏洞在U-Boot实例的上下文中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A