CVE List

CVE-2020-10058

Critical 7.8

Multiple syscalls in the Kscan subsystem perform insufficient argument validation, allowing code executing in userspace to potentially gain elevated privileges. See NCC-ZEP-006 This issue affects: zephyrproject-rtos zephyr version 2.1.0 and later versions.

Published May 12, 2020.

Affected software

Get alerts for Zephyrproject Zephyr

Reference links