VYPR
Vendor

Buildroot

Products
1
CVEs
7
Across products
7
Status
Private

Products

1

Recent CVEs

7
  • CVE-2024-34455HigMay 3, 2024
    risk 0.42cvss 7.5epss 0.01

    Buildroot before 0b2967e lacks the sticky bit for the /dev/shm directory. A fix was released in 2024.02.2.

  • CVE-2023-45842Dec 5, 2023
    risk 0.00cvss epss 0.01

    Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related…

  • CVE-2023-45841Dec 5, 2023
    risk 0.00cvss epss 0.01

    Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related…

  • CVE-2023-45840Dec 5, 2023
    risk 0.00cvss epss 0.01

    Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related…

  • CVE-2023-45839Dec 5, 2023
    risk 0.00cvss epss 0.01

    Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related…

  • CVE-2023-45838Dec 5, 2023
    risk 0.00cvss epss 0.01

    Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related…

  • CVE-2023-43608Dec 5, 2023
    risk 0.00cvss epss 0.01

    A data integrity vulnerability exists in the BR_NO_CHECK_HASH_FOR functionality of Buildroot 2023.08.1 and dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.