CVE-2024-6443 | zephyrproject-rtos Zephyr up to 3.6 zephyr/lib/utils/utf8.c utf8_trunc last_byte_p out-of-bounds (GHSA-gg46-3rh2-v765)
A vulnerability was found in zephyrproject-rtos Zephyr up to 3.6. It has been declared as critical. Affected by this vulnerability is the function utf8_trunc in the library zephyr/lib/utils/utf8.c. The manipulation of the argument last_byte_p leads to out-of-bounds read.
This vulnerability is known as CVE-2024-6443. The attack needs to be done within the local network. There is no exploit available.