Buffer Overflow Vulnerability in Zephyr Shell Component Allows Arbitrary Code Execution

Buffer Overflow Vulnerability in Zephyr Shell Component Allows Arbitrary Code Execution

CVE-2017-14202 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the shell component of Zephyr allows a serial or telnet connected user to cause a crash, possibly with arbitrary code execution. This issue affects: Zephyr shell versions prior to 1.14.0 on all.

Learn more about our User Device Pen Test.