CVE-2020-1939

Summary

The Apache NuttX (Incubating) project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected only if they have enabled ftpd. Versions 6.15 to 8.2 are affected.

Affected Software

VendorProductVersion RangeStatus
n/aApache NuttX (incubating)Apache NuttX (incubating) 6.15 to 8.2affected

Weaknesses

  • NULL Pointer Dereference

ADP Enrichment

CVE Program Container

Additional References

References