Filter
AND

Software

zephyrproject zephyr
48

Zephyrproject ZephyrBT: HCI: adv_ext_report Improper discarding in adv_ext_report

high
7.6
First published (updated )
CVE-2024-6259

Zephyrproject ZephyrBT: Classic: SDP OOB access in get_att_search_list

high
7.6
First published (updated )
CVE-2024-6137

Zephyrproject ZephyrBT:Classic: Multiple missing buf length checks

high
7.6
First published (updated )
CVE-2024-6135

Zephyrproject ZephyrBT: Encryption procedure host vulnerability

high
8.2
First published (updated )
CVE-2024-5754

Zephyrproject Zephyrbt: hci: DoS and possible RCE

high
8.8
First published (updated )
CVE-2023-4424

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

CVE-2023-5139Potential buffer overflow vulnerability in the Zephyr STM32 Crypto driver

high
7.8
First published (updated )
CVE-2023-5139

CVE-2023-5753Potential buffer overflow vulnerabilities in the Zephyr Bluetooth subsystem

high
8.8
EPSS
0.05%
First published (updated )
CVE-2023-5753

Zephyrproject ZephyrPotential buffer overflow vulnerability in the Zephyr IEEE 802.15.4 nRF 15.4 driver

high
8.8
First published (updated )
CVE-2023-4263

Zephyrproject ZephyrThe SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when…

high
7.5
First published (updated )
CVE-2023-5563

Zephyrproject ZephyrPotential signed to unsigned conversion errors and buffer overflow vulnerabilities in the Zephyr IPM driver

high
8.8
First published (updated )
CVE-2023-5184

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Zephyrproject ZephyrPotential buffer overflow vulnerabilities in the Zephyr eS-WiFi driver

high
8.8
First published (updated )
CVE-2023-4259

Zephyrproject Zephyrbt: mesh: vulnerability in provisioning protocol implementation on provisionee side

high
8.6
First published (updated )
CVE-2023-4258

Zephyrproject ZephyrHCI send_sync Dangling Semaphore Reference Re-use

high
8
First published (updated )
CVE-2023-1901

Zephyrproject ZephyrBT HCI host union variant confusion

high
8.8
First published (updated )
CVE-2023-2234

Zephyrproject ZephyrHCI Connection Creation Dangling State Reference Re-use

high
8
First published (updated )
CVE-2023-1902

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Zephyrproject Zephyripv6: Missing ipv6 nullptr-check in handle_ra_input

high
7.5
First published (updated )
CVE-2023-0359

Zephyrproject Zephyrnet: shell: Improper input validation

high
7.7
First published (updated )
CVE-2023-0779

Zephyrproject Zephyrcan: denial-of-service can be triggered by a crafted CAN frame

high
8.2
First published (updated )
CVE-2022-2741

Zephyrproject ZephyrOut-of-bound write in tcp_flags

high
7.2
First published (updated )
CVE-2022-1841

Zephyrproject ZephyrOut-of-bound write vulnerability in the Bluetooth mesh core stack can be triggered during provisioning

high
8.8
First published (updated )
CVE-2022-1041

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Zephyrproject ZephyrOut-of-bound write vulnerability in the Bluetooth mesh core stack can be triggered during provisioning

high
8.8
First published (updated )
CVE-2022-1042

Zephyrproject ZephyrL2CAP: Stack based buffer overflow in le_ecred_conn_req()

high
7.8
First published (updated )
CVE-2021-3434

Zephyrproject ZephyrBT: Assertion failure on repeated LL_FEATURE_REQ

high
7.5
First published (updated )
CVE-2021-3431

Zephyrproject ZephyrBT: Assertion failure on repeated LL_CONNECTION_PARAM_REQ

high
7.5
First published (updated )
CVE-2021-3430

Zephyrproject ZephyrThe RNDIS USB device class includes a buffer overflow vulnerability

high
8.2
First published (updated )
CVE-2021-3861

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Zephyrproject ZephyrTruncated L2CAP K-frame causes assertion failure

high
7.5
First published (updated )
CVE-2021-3454

Zephyrproject ZephyrDisconnecting L2CAP channel right after invalid ATT request leads freeze

high
7.5
First published (updated )
CVE-2021-3455

Zephyrproject ZephyrRCE/DOS: Linked-list corruption leading to large out-of-bounds write while sorting for forged fragment list in Zephyr

high
8.8
First published (updated )
CVE-2021-3330

Zephyrproject ZephyrInteger Underflow in Zephyr in IEEE 802154 Fragment Reassembly Header Removal

high
8.8
First published (updated )
CVE-2021-3321

Zephyrproject ZephyrBuffer Access with Incorrect Length Value in zephyr

high
8.8
First published (updated )
CVE-2021-3581

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203