Lucene search
ZephyrCVE-2023-5753HistoryOct 25, 2023 - 6:17 p.m.
CVE-2023-5753
2023-10-2518:17:44
CWE-191
CWE-120
zephyr
web.nvd.nist.gov
13
cve-2023-5753
buffer overflow
bluetooth subsystem
asserts disabled
nvd
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0.001
Percentile
19.1%
Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hci_core.c
Affected configurations
Node
zephyrprojectzephyrRange≤3.4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| zephyrproject | zephyr | * | cpe:2.3:o:zephyrproject:zephyr:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"packageName": "Zephyr",
"product": "Zephyr",
"repo": "https://github.com/zephyrproject-rtos/zephyr",
"vendor": "zephyrproject-rtos",
"versions": [
{
"lessThan": "3.5",
"status": "affected",
"version": "*",
"versionType": "git"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2023-5753
2023-10-25 18:17:44
veracode
veracode
Buffer Overflow
2023-11-03 09:02:00
prion
prion
Buffer overflow
2023-10-25 18:17:00
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0.001
Percentile
19.1%
Related for CVE-2023-5753