DENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overflow via a crafted kernel image because filesystem loading is mishandled.
Max CVSS
7.8
EPSS Score
0.05%
Published
2018-11-20
Updated
2019-12-10
DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP server because TFTP traffic is mishandled. Also, local exploitation can occur via a crafted kernel image.
Max CVSS
10.0
EPSS Score
0.39%
Published
2018-11-20
Updated
2023-01-23
2 vulnerabilities found