Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
denx u-boot vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-14199
An issue exists in Das U-Boot up to and including 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.
Denx U-boot
9.8
CVSSv3
CVE-2019-14200
An issue exists in Das U-Boot up to and including 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.
Denx U-boot
9.8
CVSSv3
CVE-2019-14202
An issue exists in Das U-Boot up to and including 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.
Denx U-boot
9.8
CVSSv3
CVE-2019-14203
An issue exists in Das U-Boot up to and including 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.
Denx U-boot
9.8
CVSSv3
CVE-2019-14196
An issue exists in Das U-Boot up to and including 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.
Denx U-boot
9.8
CVSSv3
CVE-2019-11059
Das U-Boot 2016.11-rc1 up to and including 2019.04 mishandles the ext4 64-bit extension, resulting in a buffer overflow.
Denx U-boot 2016.11
Denx U-boot
9.8
CVSSv3
CVE-2018-18439
DENX U-Boot up to and including 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP server because TFTP traffic is mishandled. Also, local exploitation can occur via a crafted kernel image.
Denx U-boot 2018.09
Denx U-boot
9.1
CVSSv3
CVE-2019-14197
An issue exists in Das U-Boot up to and including 2019.07. There is a read of out-of-bounds data at nfs_read_reply.
Denx U-boot
7.8
CVSSv3
CVE-2022-33967
squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service (DoS) condition ...
Denx U-boot 2021.04
Denx U-boot 2022.07
Denx U-boot 2022.01
Denx U-boot 2020.10
Denx U-boot 2021.01
Denx U-boot 2022.04
7.8
CVSSv3
CVE-2022-33103
Das U-Boot from v2020.10 to v2022.07-rc3 exists to contain an out-of-bounds write via the function sqfs_readdir().
Denx U-boot 2022.07
Denx U-boot
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »