Linuxfoundation Yocto vulnerabilities

112 known vulnerabilities affecting linuxfoundation/yocto.

Total CVEs
112
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH14MEDIUM93LOW2

Vulnerabilities

Page 6 of 6
CVE-2023-20746MEDIUMCVSS 6.7v4.02023-06-06
CVE-2023-20746 [MEDIUM] CWE-667 CVE-2023-20746: In vcu, there is a possible out of bounds write due to improper locking. This could lead to local es In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519217.
nvd
CVE-2023-20733MEDIUMCVSS 6.7v4.02023-06-06
CVE-2023-20733 [MEDIUM] CWE-667 CVE-2023-20733: In vcu, there is a possible use after free due to improper locking. This could lead to local escalat In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645149.
nvd
CVE-2023-20727MEDIUMCVSS 4.4v4.02023-06-06
CVE-2023-20727 [MEDIUM] CWE-125 CVE-2023-20727: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588531; Issue ID: ALPS07588531.
nvd
CVE-2023-20745MEDIUMCVSS 6.7v4.02023-06-06
CVE-2023-20745 [MEDIUM] CWE-667 CVE-2023-20745: In vcu, there is a possible out of bounds write due to improper locking. This could lead to local es In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07560694.
nvd
CVE-2023-20730MEDIUMCVSS 4.4v3.1v3.3+1 more2023-06-06
CVE-2023-20730 [MEDIUM] CWE-125 CVE-2023-20730: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573552.
nvd
CVE-2023-20729MEDIUMCVSS 4.4v3.1v3.3+1 more2023-06-06
CVE-2023-20729 [MEDIUM] CWE-125 CVE-2023-20729: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573575.
nvd
CVE-2023-20716MEDIUMCVSS 6.7v4.02023-06-06
CVE-2023-20716 [MEDIUM] CWE-787 CVE-2023-20716: In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07796883; Issue ID: ALPS07796883.
nvd
CVE-2023-20726LOWCVSS 3.3v2.6v3.32023-05-15
CVE-2023-20726 [LOW] CWE-862 CVE-2023-20726: In mnld, there is a possible leak of GPS location due to a missing permission check. This could lead In mnld, there is a possible leak of GPS location due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07735968 / ALPS07884552 (For MT6880, MT6890, MT6980, MT6980D and MT6990 only); Issue ID: ALPS07735968 / ALPS07
nvd
CVE-2022-32589HIGHCVSS 7.5v3.1v3.32022-10-07
CVE-2022-32589 [HIGH] CWE-404 CVE-2022-32589: In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. Th In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07030600; Issue ID: ALPS07030600.
nvd
CVE-2022-26475MEDIUMCVSS 6.7v3.1v3.32022-10-07
CVE-2022-26475 [MEDIUM] CWE-787 CVE-2022-26475: In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310743; Issue ID: ALPS07310743.
nvd
CVE-2022-32592MEDIUMCVSS 6.7v3.1v3.32022-10-07
CVE-2022-32592 [MEDIUM] CWE-787 CVE-2022-32592: In cpu dvfs, there is a possible out of bounds write due to a missing bounds check. This could lead In cpu dvfs, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07139405; Issue ID: ALPS07139405.
nvd
CVE-2022-32590MEDIUMCVSS 6.7v3.1v3.32022-10-07
CVE-2022-32590 [MEDIUM] CWE-754 CVE-2022-32590: In wlan, there is a possible use after free due to an incorrect status check. This could lead to loc In wlan, there is a possible use after free due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07299425; Issue ID: ALPS07299425.
nvd
← Previous6 / 6