CVE-2022-36063

🗓️ 10 Oct 2022 00:00:00Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 50 Views

Azure RTOS USBX host, device, and OTG embedded stack with integer underflow and buffer overflow in `_ux_host_class_cdc_ecm_mac_address_get` function

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2022-36063	11 Oct 202200:25	–	circl
CNNVD	Azure RTOS USBX 安全漏洞	10 Oct 202200:00	–	cnnvd
Cvelist	CVE-2022-36063 USBX Host CDC ECM integer underflow with buffer overflow	10 Oct 202200:00	–	cvelist
EUVD	EUVD-2022-38825	3 Oct 202520:07	–	euvd
NVD	CVE-2022-36063	10 Oct 202221:15	–	nvd
OSV	CVE-2022-36063 USBX Host CDC ECM integer underflow with buffer overflow	10 Oct 202200:00	–	osv
Prion	Integer overflow	10 Oct 202221:15	–	prion
Positive Technologies	PT-2022-5011 · Microsoft · Azure Rtos Usbx	10 Oct 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-36063	5 Feb 202522:38	–	redhatcve
Vulnrichment	CVE-2022-36063 USBX Host CDC ECM integer underflow with buffer overflow	10 Oct 202200:00	–	vulnrichment

NVD

Vulners

Node

eclipse threadx_usbxRange<6.1.11

[
  {
    "vendor": "azure-rtos",
    "product": "usbx",
    "versions": [
      {
        "version": "< 6.1.12",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/azure-rtos/usbx/blob/master/common/usbx_host_classes/src/ux_host_class_cdc_ecm_mac_address_get.c
github	www.github.com/azure-rtos/usbx/releases/tag/v6.1.12_rel
github	www.github.com/azure-rtos/usbx/security/advisories/GHSA-chpp-5fv9-6368