Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
denx u-boot vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-14192
An issue exists in Das U-Boot up to and including 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.
Denx U-boot
1 Github repository
5.9
CVSSv3
CVE-2019-11690
gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 lacks an srand call, which allows malicious users to determine UUID values in scenarios where CONFIG_RANDOM_UUID is enabled, and Das U-Boot is relied upon for UUID values of a GUID Partition Table of a boot devic...
Denx U-boot
7.8
CVSSv3
CVE-2022-30790
Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.
Denx U-boot 2022.01
5.5
CVSSv3
CVE-2022-30552
Das U-Boot 2022.01 has a Buffer Overflow.
Denx U-boot 2022.01
7.8
CVSSv3
CVE-2019-13105
Das U-Boot versions 2019.07-rc1 up to and including 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem.
Denx U-boot 2019.07
9.8
CVSSv3
CVE-2020-8432
In Das U-Boot up to and including 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an malicious user to execute arbitrary code. NOTE: this vulnerablity was introduced when at...
Denx U-boot
Opensuse Leap 15.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4