CVE-2023-7060

Name of the Vulnerable Software and Affected Versions Zephyr OS (affected versions not specified)

Description The issue concerns the handling of IP packets in Zephyr OS. Specifically, it does not properly drop IP packets arriving on an external interface with a source address equal to 127.0.0.1 or the destination address. This could potentially lead to security issues, although specific details about the estimated number of affected devices or real-world incidents are not provided.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.