CVE-2021-3581

HIGH

zephyr >=2.5.0 - Buffer Overflow

Title source: llm

Description

Buffer Access with Incorrect Length Value in zephyr. Zephyr versions >= >=2.5.0 contain Buffer Access with Incorrect Length Value (CWE-805). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-8q65-5gqf-fmw5

References (1)

[Patch, Vendor Advisory] http://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-8q65-5gqf-fmw5

Scores

CVSS v3 7.0

EPSS 0.0015

EPSS Percentile 35.4%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Details

CWE

CWE-1284 CWE-805

Status published

Products (1)

zephyrproject/zephyr 2.5.0 - 2.6.0

Published Oct 05, 2021

Tracked Since Feb 18, 2026