Zephyrproject Vulnerabilities
Comprehensive security vulnerability database for Zephyrproject products
1
1
1
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-1678 | 9.8 | This vulnerability allows an attacker to send a specially crafted DNS response that can cause the system to write data outside of its allocated memory, potentially leading to crashes or the execution of malicious code. This issue occurs when the DNS resolver feature is enabled and assertions are turned off, making it easier for attackers to exploit the flaw. | zephyrprojectzephyr | Exploit Available | about 1 month agoMar 5, 2026 |
About Zephyrproject Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Zephyrproject products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.