← Back

Simplelink Cc32xx Software Development Kit

simplelink_cc32xx_software_development_kit

Vendor: Ti • 10 CVEs

CVEs (10)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-27504
2Amazon
Ti
6Freertos
Simplelink Cc13xx Software Development KitSimplelink Cc26xx Software Development Kit+3 more
Nov 21, 2024
Nov 21, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code e...Show more
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.Show less
CVE-2021-27502
1Ti
6Real Time Operating System
Simplelink Cc13xx Software Development KitSimplelink Cc26xx Software Development Kit+3 more
Nov 21, 2024
Nov 21, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allo...Show more
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.Show less
CVE-2021-27429
1Ti
6Real Time Operating System
Simplelink Cc13xx Software Development KitSimplelink Cc26xx Software Development Kit+3 more
Nov 21, 2024
Nov 20, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values. This can trigger an integer overflow vulnerability in 'HeapTrack_alloc' and result in code execution.
CVE-2021-22636
1Ti
6Real Time Operating System
Simplelink Cc13xx Software Development KitSimplelink Cc26xx Software Development Kit+3 more
Nov 21, 2024
Nov 20, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_...Show more
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution. Show less
CVE-2021-21966
1Ti
3Cc3100 Firmware
Cc3200 FirmwareSimplelink Cc32xx Software Development Kit
Nov 21, 2024
Feb 16, 2022
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read....Show more
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability.Show less
CVE-2021-22677
1Ti
7Cc3100 Software Development Kit
Cc3200 Software Development KitSimplelink Cc13x0 Software Development Kit+4 more
Nov 21, 2024
May 7, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00....Show more
An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).Show less
CVE-2021-22673
1Ti
7Cc3100 Software Development Kit
Cc3200 Software Development KitSimplelink Cc13x0 Software Development Kit+4 more
Nov 21, 2024
May 7, 2021
N/A· v4
8.0 HIGH· v3
6.0 MEDIUM· v2
The affected product is vulnerable to stack-based buffer overflow while processing over-the-air firmware updates from the CDN server, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4...Show more
The affected product is vulnerable to stack-based buffer overflow while processing over-the-air firmware updates from the CDN server, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).Show less
CVE-2021-22671
1Ti
7Cc3100 Software Development Kit
Cc3200 Software Development KitSimplelink Cc13x0 Software Development Kit+4 more
Nov 21, 2024
May 7, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and pri...Show more
Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).Show less
CVE-2021-22679
1Ti
7Cc3100 Software Development Kit
Cc3200 Software Development KitSimplelink Cc13x0 Software Development Kit+4 more
Nov 21, 2024
May 7, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30...Show more
The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).Show less
CVE-2021-22675
1Ti
7Cc3100 Software Development Kit
Cc3200 Software Development KitSimplelink Cc13x0 Software Development Kit+4 more
Nov 21, 2024
May 7, 2021
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may allow an attacker to remotely execute code on SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and p...Show more
The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may allow an attacker to remotely execute code on SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).Show less