CVE-2021-40154

🗓️ 01 Dec 2021 14:50:48Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 47 Views🌐 WEB

NXP LPC55S69 devices before A3 have a buffer over-read via a crafted wlength value in a GET Descriptor Configuration request during USB In-System Programming (ISP) mode

Reporter	Title	Published	Views	Family All 9
GithubExploit	Exploit for Out-of-bounds Read in Nxp Lpc55S69Jbd100_Firmware	24 Nov 202101:34	–	githubexploit
Circl	CVE-2021-40154	1 Dec 202118:40	–	circl
CNNVD	Nxp Semiconductors Nxp Lpc55S69 缓冲区错误漏洞	1 Dec 202100:00	–	cnnvd
Cvelist	CVE-2021-40154	1 Dec 202114:50	–	cvelist
EUVD	EUVD-2021-27339	7 Oct 202500:30	–	euvd
EUVD	EUVD-2021-31312	3 Oct 202520:07	–	euvd
NVD	CVE-2021-40154	1 Dec 202115:15	–	nvd
Prion	Design/Logic Flaw	1 Dec 202115:15	–	prion
Prion	Buffer overflow	1 Dec 202115:15	–	prion

NVD

Node

nxp lpc55s69jbd100_firmwareMatch-

AND

nxp lpc55s69jbd100Match0a

Node

nxp lpc55s69jbd100_firmwareMatch-

AND

nxp lpc55s69jbd100Match1b

Node

nxp lpc55s69jbd64_firmwareMatch-

AND

nxp lpc55s69jbd64Match0a

Node

nxp lpc55s69jbd64_firmwareMatch-

AND

nxp lpc55s69jbd64Match1b

Node

nxp lpc55s69jev98_firmwareMatch-

AND

nxp lpc55s69jev98Match0a

Node

nxp lpc55s69jev98_firmwareMatch-

AND

nxp lpc55s69jev98Match1b

Source	Link
darkmatter	www.darkmatter.ae/xen1thlabs/published-advisories/
github	www.github.com/Xen1thLabs-AE/CVE-2021-40154

Parameter	Position	Path	Description	CWE
wlength	path	USB Control endpoint 0	Buffer over-read via crafted wlength on USB Control endpoint 0 during ISP, leaking protected flash data.	CWE-125
wlength	path	GET Status-Other (K82 USB)	Buffer over-read via crafted wlength on GET Status-Other in USB, leaking up to 64KB of data.	CWE-125

21 Nov 2024 06:23Current

5.5Medium risk

Vulners AI Score5.5

CVSS 22.1

CVSS 3.15.5 - 6.1

EPSS0.01344

CWE-125