CVE-2023-0779

Summary

At the most basic level, an invalid pointer can be input that crashes the device, but with more knowledge of the device’s memory layout, further exploitation is possible.

Affected Software

VendorProductVersion RangeStatus
zephyrproject-rtoszephyrunspecified < v3.3affected
zephyrproject-rtoszephyrunspecified <= v2.7.4affected

Weaknesses

  • CWE-20: Improper Input Valiation (CWE-20)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References