Busybox Busybox
27 CVEs affecting Busybox Busybox. Latest disclosed: 2025-11-10. Critical: 1, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-2148 | Critical | 9.8 | 2017-02-09 | Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to have unspecified impact via vectors involving OPTION… |
CVE-2017-16544 | High | 8.8 | 2017-11-20 | In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a direct… |
CVE-2011-5325 | High | 7.5 | 2017-08-07 | Directory traversal vulnerability in the BusyBox implementation of tar before 1.22.0 v5 allows remote attackers to point to files outside the current working d… |
CVE-2016-2147 | High | 7.5 | 2017-02-09 | Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-enco… |
CVE-2016-6301 | High | 7.5 | 2016-12-09 | The recv_and_process_client_pkt function in networking/ntpd.c in busybox allows remote attackers to cause a denial of service (CPU and bandwidth consumption) v… |
CVE-2025-60876 | Medium | 6.5 | 2025-11-10 | BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF (0x0A) and other C0 control bytes in the HTTP request-target (path/query), allowing the request line to be sp… |
CVE-2017-15873 | Medium | 5.5 | 2017-10-24 | The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an Integer Overflow that may lead to a write access violation. |
CVE-2014-9645 | Medium | 5.5 | 2017-03-12 | The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (sl… |
CVE-2017-15874 | Medium | 5.0 | 2017-10-24 | archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation. |
CVE-2025-46394 | Low | 3.2 | 2025-04-23 | In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences. |
CVE-2024-58251 | Low | 2.5 | 2025-04-23 | In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a d… |
CVE-2021-42386 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function | |
CVE-2021-42385 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function | |
CVE-2021-42384 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special fun… | |
CVE-2021-42383 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function | |
CVE-2021-42382 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s function | |
CVE-2021-42381 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init function | |
CVE-2021-42380 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar function | |
CVE-2021-42379 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file fu… | |
CVE-2021-42378 | | 2021-11-15 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i function |