Yoctoproject Yocto vulnerabilities

26 known vulnerabilities affecting yoctoproject/yocto.

Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM25

Vulnerabilities

Page 1 of 2
CVE-2023-20721MEDIUMCVSS 6.7v4.02023-05-15
CVE-2023-20721 [MEDIUM] CWE-20 CVE-2023-20721: In isp, there is a possible out of bounds write due to improper input validation. This could lead to In isp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07162155; Issue ID: ALPS07162155.
nvd
CVE-2023-20718MEDIUMCVSS 6.7v4.02023-05-15
CVE-2023-20718 [MEDIUM] CWE-20 CVE-2023-20718: In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645181; Issue ID: ALPS07645181.
nvd
CVE-2023-20662MEDIUMCVSS 6.7v3.1v3.3+1 more2023-04-06
CVE-2023-20662 [MEDIUM] CWE-190 CVE-2023-20662: In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560765; Issue ID: ALPS07560765.
nvd
CVE-2023-20676MEDIUMCVSS 4.4v3.1v3.3+1 more2023-04-06
CVE-2023-20676 [MEDIUM] CWE-125 CVE-2023-20676: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07628518.
nvd
CVE-2023-20675MEDIUMCVSS 4.4v3.1v3.3+1 more2023-04-06
CVE-2023-20675 [MEDIUM] CWE-125 CVE-2023-20675: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07588569.
nvd
CVE-2023-20677MEDIUMCVSS 4.4v3.1v3.3+1 more2023-04-06
CVE-2023-20677 [MEDIUM] CWE-125 CVE-2023-20677: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588436.
nvd
CVE-2023-20660MEDIUMCVSS 4.4v3.1v3.3+1 more2023-04-06
CVE-2023-20660 [MEDIUM] CWE-190 CVE-2023-20660: In wlan, there is a possible out of bounds read due to an integer overflow. This could lead to local In wlan, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588383; Issue ID: ALPS07588383.
nvd
CVE-2023-20659MEDIUMCVSS 6.7v3.1v3.3+1 more2023-04-06
CVE-2023-20659 [MEDIUM] CWE-787 CVE-2023-20659: In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588413.
nvd
CVE-2023-20663MEDIUMCVSS 6.7v3.1v3.3+1 more2023-04-06
CVE-2023-20663 [MEDIUM] CWE-190 CVE-2023-20663: In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560741; Issue ID: ALPS07560741.
nvd
CVE-2023-20679MEDIUMCVSS 4.4v3.1v3.3+1 more2023-04-06
CVE-2023-20679 [MEDIUM] CWE-125 CVE-2023-20679: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588453.
nvd
CVE-2023-20682MEDIUMCVSS 6.7v3.1v3.3+1 more2023-04-06
CVE-2023-20682 [MEDIUM] CWE-190 CVE-2023-20682: In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441605; Issue ID: ALPS07441605.
nvd
CVE-2023-20661MEDIUMCVSS 6.7v3.1v3.3+1 more2023-04-06
CVE-2023-20661 [MEDIUM] CWE-190 CVE-2023-20661: In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560782; Issue ID: ALPS07560782.
nvd
CVE-2023-20674MEDIUMCVSS 4.4v3.1v3.3+1 more2023-04-06
CVE-2023-20674 [MEDIUM] CWE-125 CVE-2023-20674: In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07588552.
nvd
CVE-2023-20623MEDIUMCVSS 6.4v3.1v3.3+1 more2023-03-07
CVE-2023-20623 [MEDIUM] CWE-367 CVE-2023-20623: In ion, there is a possible escalation of privilege due to improper locking. This could lead to loca In ion, there is a possible escalation of privilege due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559778; Issue ID: ALPS07559778.
nvd
CVE-2022-32631MEDIUMCVSS 6.7v3.12022-12-05
CVE-2022-32631 [MEDIUM] CWE-787 CVE-2022-32631: In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07453613; Issue ID: ALPS07453613.
nvd
CVE-2022-32633MEDIUMCVSS 6.7v3.1v3.32022-12-05
CVE-2022-32633 [MEDIUM] CWE-269 CVE-2022-32633: In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441637; Issue ID: ALPS07441637.
nvd
CVE-2022-32632MEDIUMCVSS 6.7v3.1v3.32022-12-05
CVE-2022-32632 [MEDIUM] CWE-787 CVE-2022-32632: In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441630; Issue ID: ALPS07441630.
nvd
CVE-2022-26447CRITICALCVSS 9.8v3.12022-09-06
CVE-2022-26447 [CRITICAL] CWE-787 CVE-2022-26447: In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could le In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784478; Issue ID: ALPS06784478.
nvd
CVE-2022-26465MEDIUMCVSS 6.7v3.12022-09-06
CVE-2022-26465 [MEDIUM] CWE-787 CVE-2022-26465: In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This could l In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558799; Issue ID: ALPS06558799.
nvd
CVE-2022-26466MEDIUMCVSS 6.7v3.12022-09-06
CVE-2022-26466 [MEDIUM] CWE-190 CVE-2022-26466: In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558777; Issue ID: ALPS06558777.
nvd
1 / 2Next →