CVE-2021-3510

Summary

Zephyr JSON decoder incorrectly decodes array of array. Zephyr versions >= >1.14.0, >= >2.5.0 contain Attempt to Access Child of a Non-structure Pointer (CWE-588). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-289f-7mw3-2qf4

Affected Software

VendorProductVersion RangeStatus
zephyrproject-rtoszephyr>1.14.0 < unspecifiedaffected
zephyrproject-rtoszephyr>2.5.0 < unspecifiedaffected

Weaknesses

  • CWE-588: Attempt to Access Child of a Non-structure Pointer (CWE-588)

ADP Enrichment

CVE Program Container

Additional References

References