[CYBERDIGEST]
⊞ Dashboard ⚡ Intelligence 📝 Reports 📚 Global Threats 💻 Hack Lab 🗄️ Resources ⌬ 0xJerry's Lab
📡 RSS Feed
System Online

Tag

#Zephyr

blogHIGH 7.4

Understanding and Defending Against CVE-2026-10665: Remote Memory Corruption in Zephyr's WireGuard Subsystem

CVE-2026-10665 is a high-severity vulnerability in Zephyr's WireGuard subsystem that allows for remote memory corruption and denial of service. The vulnerability is caused by an out-of-bounds write in the wg_process_data_message() function. This educational analysis will provide an in-depth look at the vulnerability, its exploitation mechanics, and defensive strategies.

Jul 13, 20261 source
articleHIGH 7.8

Critical Use-After-Free Vulnerability in Zephyr's Dynamic Kernel-Object Tracking (CVE-2026-10667)

A critical use-after-free vulnerability (CVE-2026-10667) has been discovered in Zephyr's dynamic kernel-object tracking, affecting SMP systems with userspace enabled. This vulnerability allows a deprivileged user thread to corrupt kernel object-tracking structures, potentially leading to privilege escalation or denial of service. The vulnerability has a CVSS score of 7.8 and affects Zephyr versions from 1.14.0 to 4.4.0. Immediate patching is recommended to prevent potential exploitation.

Jul 13, 20261 source