CVE-2026-0849

Name of the Vulnerable Software and Affected Versions Zephyr (affected versions not specified)

Description The Zephyr crypto driver contains a flaw where malformed ATAES132A responses with an oversized length field can cause a 52-byte stack buffer overflow. This allows a compromised device or a bus attacker to potentially corrupt kernel memory and hijack execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.