zephyrproject-rtos

Top products

The 15 most recently published vulnerabilities affecting zephyrproject-rtos.

• CVE-2026-5068bt: l2cap le coc: remote oob write via seg counter stored in net_buf user_data7.6Jun 9, 2026
• CVE-2026-5067Out-of-bounds read/write in HTTP WebSocket upgrade via non-null-terminated Sec-WebSocket-Key9.8Jun 9, 2026
• CVE-2026-5066net: sockets: tls: Potential out-of-bounds write/read in socket_op_vtable::connect function6.3Jun 4, 2026
• CVE-2026-5589Out-of-bounds write caused by an integer underflow in the Bluetooth Mesh subsystem.6.3Jun 4, 2026
• CVE-2026-5071can: Local Denial of Service via SocketCAN Send6.1May 30, 2026
• CVE-2026-5072ptp: Potential Denial of Service via PTP Interval Shift6.5May 22, 2026
• CVE-2026-1681net: Stack Overflow with Ping (to own IP Address) via Shell6.1May 12, 2026
• CVE-2026-1677net: TLS 1.2 connections allowed on TLS 1.3 sockets5.3May 11, 2026
• CVE-2026-5590net: ip/tcp: Null pointer dereference can be triggered by a race condition6.4Apr 5, 2026
• CVE-2026-1679net: eswifi socket send payload length not bounded7.3Mar 27, 2026
• CVE-2026-4179stm32: usb: Infinite while loop in Interrupt Handler6.1Mar 14, 2026
• CVE-2026-0849crypto: ATAES132A response length allows stack buffer overflow3.8Mar 14, 2026
• CVE-2026-1678dns: memory‑safety issue in the DNS name parser9.4Mar 5, 2026
• CVE-2025-12899net: icmp: Out of bound memory read6.5Jan 30, 2026
• CVE-2025-12035Bluetooth: Integer Overflow in Bluetooth Classic (BR/EDR) L2CAP6.5Dec 15, 2025