2 matches found
CVE-2022-39293
Azure RTOS USBX is a high-performance USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. The case is, in uxhostclasspimaread, there is data length from device response, returned in the very first packet, and read by L165 code, as headerlength. Th...
CVE-2022-39293
CVE-2022-39293 affectsAzure RTOS USBX prior to version 6.1.12. The vulnerability arises in ux_host_class_pima_read where the length from the device response (header_length) is used in a calculation: if header_length is smaller than UX_HOST_CLASS_PIMA_DATA_HEADER_SIZE, the (header_length - UX_HOST...