DENX U-Boot up to and including 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP server because TFTP traffic is mishandled. Also, local exploitation can occur via a crafted kernel image.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
denx u-boot 2018.09 |
||
denx u-boot |