Known Vulnerabilities for Zephyr by Zephyrproject-rtos
Listed below are 10 of the newest known vulnerabilities associated with "Zephyr" by "Zephyrproject-rtos".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-13351 json | Zephyr's IPv6 network stack can be prevented from receiving or processing future incoming packets by sending a small number o... | Not Provided | 2026-06-25 | 2026-06-25 |
| CVE-2026-10687 json | Rejected reason: This CVE Record has been rejected by the Zephyr Project CNA. Subsequent analysis, confirmed with the fix aut... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-10676 json | Rejected reason: This CVE Record has been rejected by the Zephyr Project CNA. Subsequent analysis determined that the address... | Not Provided | 2026-06-12 | 2026-06-11 |
| CVE-2026-10673 json | The Zephyr ADIN2111/ADIN1110 10BASE-T1S/T1L Ethernet driver (drivers/ethernet/eth_adin2111.c) reassembles received Ethernet f... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-10671 json | In Zephyr's kernel pipe implementation, the userspace syscall verifier z_vrfy_k_pipe_init() in kernel/pipe.c used K_SYSCALL_O... | Not Provided | 2026-07-14 | 2026-07-14 |
| CVE-2026-10667 json | Zephyr's dynamic kernel-object tracking (kernel/userspace/userspace.c, formerly kernel/userspace.c) maintains a doubly-linked... | Not Provided | 2026-07-12 | 2026-07-14 |
| CVE-2026-10666 json | parse_ipv4() in subsys/net/ip/utils.c (reached via net_ipaddr_parse() for strings of the form "a.b.c.d:port") copies the port... | Not Provided | 2026-07-12 | 2026-07-14 |
| CVE-2026-10665 json | In Zephyr's WireGuard subsystem (subsys/net/lib/wireguard), wg_process_data_message() in wg_crypto.c linearizes an inbound tr... | Not Provided | 2026-07-12 | 2026-07-14 |
| CVE-2026-10663 json | In Zephyr's experimental USB host stack (CONFIG_USB_HOST_STACK), usbh_device_disconnect() (subsys/usb/host/usbh_device.c) fre... | Not Provided | 2026-07-12 | 2026-07-14 |
| CVE-2026-10660 json | The Bluetooth BAP Broadcast Assistant GATT client in subsys/bluetooth/audio/bap_broadcast_assistant.c reassembled remote Broa... | Not Provided | 2026-07-11 | 2026-07-14 |