Known Vulnerabilities for products from Cypress

Listed below are 12 of the newest known vulnerabilities associated with the vendor "Cypress".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Additional devices specifications by Cypress can be found at device.report : Cypress

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-48723 json Not Provided 2026-06-15 2026-06-16
CVE-2023-47415 json Cypress Solutions CTM-200 v2.7.1.5600 and below was discovered to contain an OS command injection vulnerability via the cli_t... Not Provided 2024-03-07 2026-07-09
CVE-2021-34148 json The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly han... 6.5 - MEDIUM 2021-09-07 2021-09-14
CVE-2021-34147 json The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the ... 6.5 - MEDIUM 2021-09-07 2021-09-14
CVE-2021-34146 json The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unso... 6.5 - MEDIUM 2021-09-07 2021-09-14
CVE-2021-34145 json The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly han... 5.3 - MEDIUM 2021-09-07 2021-09-14
CVE-2020-11957 json The Bluetooth Low Energy implementation in Cypress PSoC Creator BLE 4.2 component versions before 3.64 generates a random num... 7.5 - HIGH 2020-06-09 2020-06-22
CVE-2019-18614 json On the Cypress CYW20735 evaluation board, any data that exceeds 384 bytes is copied and causes an overflow. This is because t... 7.8 - HIGH 2020-06-16 2020-06-24
CVE-2019-17061 json The Bluetooth Low Energy (BLE) stack implementation on Cypress PSoC 4 through 3.62 devices does not properly restrict the BLE... 6.5 - MEDIUM 2020-02-10 2022-01-01
CVE-2019-16336 json The Bluetooth Low Energy implementation in Cypress PSoC 4 BLE component 3.61 and earlier processes data channel frames with a... 6.5 - MEDIUM 2020-02-12 2022-01-01
CVE-2019-13916 json An issue was discovered in Cypress (formerly Broadcom) WICED Studio 6.2 CYW20735B1 and CYW20819A1. As a Bluetooth Low Energy ... 8.8 - HIGH 2020-04-13 2020-04-22
CVE-2018-19860 json Broadcom firmware before summer 2014 on Nexus 5 BCM4335C0 2012-12-11, Raspberry Pi 3 BCM43438A1 2014-06-02, and unspecifed ot... 8.8 - HIGH 2019-06-07 2020-08-24
CVE-2007-5922 json The modules/mdop.m in the Cypress 1.0k script for BitchX, as downloaded from a distribution site in November 2007, contains a... Not Provided 2007-11-10 2026-04-23

Known software with vulnerabilities from Cypress

Type Vendor Product Version
ApplicationCypressCybl11573-
ApplicationCypressCyble-416045-
HardwareCypressCyw20735-
Operating
System
CypressCyw20735 Firmware-
HardwareCypressPsoc 4-
ApplicationCypressPsoc 4.2 Ble3.64
ApplicationCypressPsoc 4 Ble3.62
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report