threat
engine
.sh
Back
·
··:··
Home
/
Product
/
linuxfoundation yocto
Product
linuxfoundation yocto
141 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-61611
all versions
In modem, there is a possible improper input validation. This could lead to remote denial of service with no additional execution
7.5
HIGH
CVE-2026-20435
all versions
In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information dis
4.6
MEDIUM
CVE-2025-20765
all versions
In aee daemon, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious
4.7
MEDIUM
CVE-2025-20747
all versions
In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of
6.7
MEDIUM
CVE-2025-20746
all versions
In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of
6.7
MEDIUM
CVE-2025-20730
all versions
In preloader, there is a possible escalation of privilege due to an insecure default value. This could lead to local escalation of
6.7
MEDIUM
CVE-2025-20705
all versions
In monitor_hang, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if
7.8
HIGH
CVE-2025-20696
all versions
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if
6.8
MEDIUM
CVE-2025-20693
all versions
In wlan STA driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote (proximal/a
6.5
MEDIUM
CVE-2025-20656
all versions
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if
6.8
MEDIUM
CVE-2025-20651
all versions
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if a
4.1
MEDIUM
CVE-2025-20650
all versions
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if
6.8
MEDIUM
CVE-2025-20635
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6
MEDIUM
CVE-2024-20147
all versions
In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of s
5.3
MEDIUM
CVE-2024-20153
all versions
In wlan STA, there is a possible way to trick a client to connect to an AP with spoofed SSID. This could lead to remote informatio
7.5
HIGH
CVE-2024-20152
all versions
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of
4.4
MEDIUM
CVE-2024-20148
all versions
In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adja
9.8
CRITICAL
CVE-2024-20146
all versions
In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/
8.1
HIGH
CVE-2024-20145
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6
MEDIUM
CVE-2024-20144
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6
MEDIUM
CVE-2024-20143
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6
MEDIUM
CVE-2024-20140
all versions
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2024-20139
all versions
In Bluetooth firmware, there is a possible firmware asssert due to improper handling of exceptional conditions. This could lead to
6.5
MEDIUM
CVE-2024-20107
all versions
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with
6.2
MEDIUM
CVE-2024-20104
all versions
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wit
8.4
HIGH
CVE-2024-20099
all versions
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2024-20098
all versions
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2024-20089
all versions
In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with n
7.5
HIGH
CVE-2024-20085
all versions
In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wi
4.4
MEDIUM
CVE-2024-20084
all versions
In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wi
4.4
MEDIUM
CVE-2024-20081
all versions
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of
6.7
MEDIUM
CVE-2024-20080
all versions
In gnss service, there is a possible escalation of privilege due to improper certificate validation. This could lead to remote esc
9.8
CRITICAL
CVE-2023-32871
all versions
In DA, there is a possible permission bypass due to an incorrect status check. This could lead to local escalation of privilege wi
5.3
MEDIUM
CVE-2024-20055
all versions
In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosu
6.3
MEDIUM
CVE-2024-20054
all versions
In gnss, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privile
6.6
MEDIUM
CVE-2024-20053
all versions
In flashc, there is a possible out of bounds write due to an uncaught exception. This could lead to local escalation of privilege
8.4
HIGH
CVE-2024-20052
all versions
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosur
4.4
MEDIUM
CVE-2024-20051
all versions
In flashc, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with System e
2.3
LOW
CVE-2024-20050
all versions
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosur
4.4
MEDIUM
CVE-2024-20049
all versions
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosur
4.4
MEDIUM
CVE-2024-20040
all versions
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation o
8.8
HIGH
CVE-2024-20023
all versions
In flashc, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege wit
6.7
MEDIUM
CVE-2024-20022
all versions
In lk, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2024-25626
< 3.1.31
Yocto Project is an open source collaboration project that helps developers create custom Linux-based systems regardless of the ha
8.8
HIGH
CVE-2023-32855
all versions
In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of priv
6.7
MEDIUM
CVE-2023-32829
all versions
In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-32820
all versions
In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of servi
7.5
HIGH
CVE-2023-32815
all versions
In gnss service, there is a possible out of bounds read due to improper input validation. This could lead to local information dis
4.4
MEDIUM
CVE-2023-32813
all versions
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local information di
4.4
MEDIUM
CVE-2023-32812
all versions
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local esclation of p
6.7
MEDIUM
CVE-2023-32811
all versions
In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local
6.7
MEDIUM
CVE-2023-32810
all versions
In bluetooth driver, there is a possible out of bounds read due to improper input validation. This could lead to local information
4.4
MEDIUM
CVE-2023-32807
all versions
In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information dis
4.4
MEDIUM
CVE-2023-32806
all versions
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of p
6.7
MEDIUM
CVE-2023-20850
all versions
In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation
6.5
MEDIUM
CVE-2023-20849
all versions
In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of p
6.5
MEDIUM
CVE-2023-20848
all versions
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation
6.5
MEDIUM
CVE-2023-20847
all versions
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of s
4.2
MEDIUM
CVE-2023-20846
all versions
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information
4.2
MEDIUM
CVE-2023-20845
all versions
In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disc
4.2
MEDIUM
CVE-2023-20844
all versions
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information
4.2
MEDIUM
CVE-2023-20843
all versions
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information
4.2
MEDIUM
CVE-2023-20842
all versions
In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalatio
6.5
MEDIUM
CVE-2023-20841
all versions
In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of p
6.5
MEDIUM
CVE-2023-20840
all versions
In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escala
6.5
MEDIUM
CVE-2023-20839
all versions
In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disc
4.2
MEDIUM
CVE-2023-20838
all versions
In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with Sy
4.0
MEDIUM
CVE-2023-20835
all versions
In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with Syste
6.4
MEDIUM
CVE-2023-20832
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20831
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20830
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20829
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20828
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20821
all versions
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2023-20805
all versions
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2023-20804
all versions
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2023-20803
all versions
In imgsys, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privileg
6.5
MEDIUM
CVE-2023-20802
all versions
In imgsys, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privileg
6.5
MEDIUM
CVE-2023-20801
all versions
In imgsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with Syst
6.4
MEDIUM
CVE-2023-20800
all versions
In imgsys, there is a possible system crash due to a mssing ptr check. This could lead to local escalation of privilege with Syste
6.5
MEDIUM
CVE-2023-20796
all versions
In power, there is a possible memory corruption due to an incorrect bounds check. This could lead to local denial of service with
4.4
MEDIUM
CVE-2023-20790
all versions
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure w
4.4
MEDIUM
CVE-2023-20693
all versions
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to remote denial of service with no
7.5
HIGH
CVE-2023-20692
all versions
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to remote denial of service with no
7.5
HIGH
CVE-2023-20691
all versions
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no a
7.5
HIGH
CVE-2023-20690
all versions
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no a
7.5
HIGH
CVE-2023-20689
all versions
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no a
7.5
HIGH
CVE-2022-32666
all versions
In Wi-Fi, there is a possible low throughput due to misrepresentation of critical information. This could lead to remote denial of
7.5
HIGH
CVE-2023-20747
all versions
In vcu, there is a possible memory corruption due to type confusion. This could lead to local denial of service with System execut
4.4
MEDIUM
CVE-2023-20746
all versions
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with Sys
6.7
MEDIUM
CVE-2023-20745
all versions
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with Sys
6.7
MEDIUM
CVE-2023-20744
all versions
In vcu, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System exec
6.7
MEDIUM
CVE-2023-20743
all versions
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with Sys
6.7
MEDIUM
CVE-2023-20740
all versions
In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System e
6.7
MEDIUM
CVE-2023-20738
all versions
In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20737
all versions
In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System e
6.7
MEDIUM
CVE-2023-20736
all versions
In vcu, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with Sys
6.4
MEDIUM
CVE-2023-20735
all versions
In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20734
all versions
In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20733
all versions
In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System e
6.7
MEDIUM
CVE-2023-20732
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
6.7
MEDIUM
CVE-2023-20731
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20730
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20729
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20728
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20716
all versions
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege w
6.7
MEDIUM
CVE-2023-20715
all versions
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege w
6.7
MEDIUM
CVE-2023-20712
all versions
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege w
6.7
MEDIUM
CVE-2023-20727
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20726
all versions
In mnld, there is a possible leak of GPS location due to a missing permission check. This could lead to local information disclosu
3.3
LOW
CVE-2023-20721
all versions
In isp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2023-20718
all versions
In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7
MEDIUM
CVE-2023-20682
all versions
In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with
6.7
MEDIUM
CVE-2023-20679
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege wi
4.4
MEDIUM
CVE-2023-20677
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20676
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20675
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20674
all versions
In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wit
4.4
MEDIUM
CVE-2023-20663
all versions
In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with
6.7
MEDIUM
CVE-2023-20662
all versions
In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with
6.7
MEDIUM
CVE-2023-20661
all versions
In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with
6.7
MEDIUM
CVE-2023-20660
all versions
In wlan, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with S
4.4
MEDIUM
CVE-2023-20659
all versions
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege w
6.7
MEDIUM
CVE-2023-20623
all versions
In ion, there is a possible escalation of privilege due to improper locking. This could lead to local escalation of privilege with
6.4
MEDIUM
CVE-2022-32659
all versions
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of pr
6.7
MEDIUM
CVE-2022-32633
all versions
In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with
6.7
MEDIUM
CVE-2022-32632
all versions
In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privile
6.7
MEDIUM
CVE-2022-32631
all versions
In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privile
6.7
MEDIUM
CVE-2022-32592
all versions
In cpu dvfs, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privile
6.7
MEDIUM
CVE-2022-32590
all versions
In wlan, there is a possible use after free due to an incorrect status check. This could lead to local escalation of privilege wit
6.7
MEDIUM
CVE-2022-32589
all versions
In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial
7.5
HIGH
CVE-2022-26475
all versions
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege w
6.7
MEDIUM
CVE-2022-26466
all versions
In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege
6.7
MEDIUM
CVE-2022-26465
all versions
In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of pri
6.7
MEDIUM
CVE-2022-26447
all versions
In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution wi
9.8
CRITICAL
CVE-2022-26435
all versions
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with S
6.7
MEDIUM
CVE-2022-26434
all versions
In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privileg
6.7
MEDIUM
CVE-2022-26433
all versions
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with S
6.7
MEDIUM
CVE-2022-26432
all versions
In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privileg
6.7
MEDIUM
CVE-2022-26431
all versions
In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privileg
6.7
MEDIUM
CVE-2022-26430
all versions
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with S
6.7
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin