彙總 yoctoproject 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
常見弱點模式包括 緩衝區溢位、記憶體損壞與輸入驗證問題,在 軟體部署與生產負載 使用場景中可能帶來 記憶體損壞、應用程式崩潰與異常行為 等風險。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2023-20721 | In isp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07162155; Issue ID: ALPS07162155. | [email protected] | 6.7 | 0.09% | 2023-05-15 | 2026-06-17 |
| CVE-2023-20718 | In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645181; Issue ID: ALPS07645181. | [email protected] | 6.7 | 0.10% | 2023-05-15 | 2026-06-17 |
| CVE-2023-20682 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441605; Issue ID: ALPS07441605. | [email protected] | 6.7 | 0.10% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20679 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588453. | [email protected] | 4.4 | 0.09% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20677 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588436. | [email protected] | 4.4 | 0.09% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20676 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07628518. | [email protected] | 4.4 | 0.09% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20675 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07588569. | [email protected] | 4.4 | 0.09% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20674 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07588552. | [email protected] | 4.4 | 0.06% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20663 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560741; Issue ID: ALPS07560741. | [email protected] | 6.7 | 0.10% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20662 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560765; Issue ID: ALPS07560765. | [email protected] | 6.7 | 0.10% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20661 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560782; Issue ID: ALPS07560782. | [email protected] | 6.7 | 0.10% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20660 | In wlan, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588383; Issue ID: ALPS07588383. | [email protected] | 4.4 | 0.09% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20659 | In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588413. | [email protected] | 6.7 | 0.10% | 2023-04-06 | 2026-06-17 |
| CVE-2023-20623 | In ion, there is a possible escalation of privilege due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559778; Issue ID: ALPS07559778. | [email protected] | 6.4 | 0.07% | 2023-03-07 | 2026-06-17 |
| CVE-2022-32633 | In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441637; Issue ID: ALPS07441637. | [email protected] | 6.7 | 0.10% | 2022-12-05 | 2026-06-17 |
| CVE-2022-32632 | In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441630; Issue ID: ALPS07441630. | [email protected] | 6.7 | 0.09% | 2022-12-05 | 2026-06-17 |
| CVE-2022-32631 | In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07453613; Issue ID: ALPS07453613. | [email protected] | 6.7 | 0.09% | 2022-12-05 | 2026-06-17 |
| CVE-2022-26466 | In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558777; Issue ID: ALPS06558777. | [email protected] | 6.7 | 0.10% | 2022-09-06 | 2026-06-17 |
| CVE-2022-26465 | In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558799; Issue ID: ALPS06558799. | [email protected] | 6.7 | 0.10% | 2022-09-06 | 2026-06-17 |
| CVE-2022-26447 | In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784478; Issue ID: ALPS06784478. | [email protected] | 9.8 | 0.57% | 2022-09-06 | 2026-06-17 |