CVE-2020-1939

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-1939

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-1939.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-1939

Published

2020-05-12T15:15:12Z

Modified

2025-01-08T07:14:05.077783Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The Apache NuttX (Incubating) project provides an optional separate "apps" repository which contains various optional components and example programs. One of these, ftpd, had a NULL pointer dereference bug. The NuttX RTOS itself is not affected. Users of the optional apps repository are affected only if they have enabled ftpd. Versions 6.15 to 8.2 are affected.

References

https://lists.apache.org/thread.html/re3adc65ff4d8d9c34e5bccba3941a28cbb0a47191c150df2727e101d%40%3Cdev.nuttx.apache.org%3E

Affected packages

Git / github.com/apache/incubator-nuttx

Affected ranges

Type: GIT
Repo: https://github.com/apache/incubator-nuttx
Events: Introduced

c9cbea94a6b14cb1e5656ed7c22e199a61a89749

Last affected

66401c8960c5211ded41ae4f60bfb1746a84bd50

Affected versions

nuttx-6.*

nuttx-6.15

nuttx-6.16

nuttx-6.17

nuttx-6.18

nuttx-6.19

nuttx-6.20

nuttx-6.21

nuttx-6.22

nuttx-6.23

nuttx-6.24

nuttx-6.25

nuttx-6.26

nuttx-6.27

nuttx-6.28

nuttx-6.29

nuttx-6.30

nuttx-6.31

nuttx-6.32

nuttx-6.33

nuttx-7.*

nuttx-7.1

nuttx-7.10

nuttx-7.11

nuttx-7.12

nuttx-7.13

nuttx-7.14

nuttx-7.15

nuttx-7.16

nuttx-7.17

nuttx-7.18

nuttx-7.19

nuttx-7.2

nuttx-7.20

nuttx-7.21

nuttx-7.22

nuttx-7.23

nuttx-7.24

nuttx-7.25

nuttx-7.26

nuttx-7.27

nuttx-7.28

nuttx-7.29

nuttx-7.3

nuttx-7.30

nuttx-7.31

nuttx-7.4

nuttx-7.5

nuttx-7.6

nuttx-7.7

nuttx-7.8

nuttx-7.9

nuttx-8.*

nuttx-8.1

nuttx-8.2