CVE-2024-6137 | zephyrproject-rtos Zephyr up to 3.6 BT get_att_search_list out-of-bounds (GHSA-pm38-7g85-cf4f)

Inserito da Angelo Barbosa | Set 14, 2024 | CVE

A vulnerability was found in zephyrproject-rtos Zephyr up to 3.6 and classified as critical. This issue affects the function get_att_search_list of the component BT. The manipulation leads to out-of-bounds read.

The identification of this vulnerability is CVE-2024-6137. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-6137 | zephyrproject-rtos Zephyr up to 3.6 BT get_att_search_list out-of-bounds (GHSA-pm38-7g85-cf4f)

Post correlati

CVE-2024-41161 | Vonets VGA-1000 up to 3.3.23.6.9 hard-coded credentials (icsa-24-214-08)

CVE-2024-4190 | OpenText ArcSight Logger up to 7.3.0 P3 cross site scripting

CVE-2024-31492 | Fortinet FortiClientMac up to 7.0.10/7.2.3 Configuration File /tmp file inclusion (FG-IR-23-345)

CVE-2023-43549 | Qualcomm Snapdragon FTM TPC memory corruption