CVE-2019-14198

CVE-2019-14198

EPSS 2.3%

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.semmle.com/uboot-rce-nfs-vulnerability/https://cert-portal.siemens.com/productcert/html/ssa-577017.html https://gitlab.com/u-boot/u-boot