PT-2023-12352 · Zephyr · Zephyr

Szymonh

Publicado

2023-01-11

Atualizado

2023-01-18

CVE-2021-3966

CVSS v3.1

9.6

Crítica

Vetor

AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H

Name of the Vulnerable Software and Affected Versions Zephyr versions prior to 2.4.0

Description The issue is related to a buffer overflow in the implementation of net buf add mem in the USB device Bluetooth class.

Recommendations For versions prior to 2.4.0, update to version 2.4.0 or later to resolve the issue.

Correção

Buffer Overflow

Heap Based Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2021-3966

GHSA-HFXQ-3W6X-FV2M

Zephyr