CVE-2026-0849

Low CVSS: 3.8

Malformed ATAES132A responses with an oversized length field overflow a 52-byte stack buffer in the Zephyr crypto driver, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution.

Vendor

Zephyrproject

Product

Zephyr

CWE

CWE-120

Yayın Tarihi

2026-03-16 14:18:07

Güncelleme

2026-04-02 14:26:59

Source Identifier

vulnerabilities@zephyrproject.org

KEV Date Added

Kategoriler

CWE-120 Zephyr LOW Zephyrproject 2026

Referanslar

https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-ff4p-3ggg-prp6 https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-ff4p-3ggg-prp6

Benzer Kayıtlar

High

CVE-2026-1679

The eswifi socket offload driver copies user-provided payloads into a fixed buffer without checking available space; ove…

Medium

CVE-2026-4179

Issues in stm32 USB device driver (drivers/usb/device/usb_dc_stm32.c) can lead to an infinite while loop.

Critical

CVE-2026-1678

dns_unpack_name() caches the buffer tailroom once and reuses it while appending DNS labels. As the buffer grows, the cac…

High

CVE-2025-10458

Parameters are not validated or sanitized, and are later used in various internal operations.

High

CVE-2025-7403

Unsafe handling in bt_conn_tx_processor causes a use-after-free, resulting in a write-before-zero. The written 4 bytes a…

High

CVE-2025-10456

A vulnerability was identified in the handling of Bluetooth Low Energy (BLE) fixed channels (such as SMP or ATT). Specif…