Lucene search
K

58 matches found

CVE
CVE
added 2022/01/24 12:19 a.m.58 views

CVE-2021-26706

The CVE-2021-26706 issue affects Micrium uC/OS uC/LIB 1.38.x and 1.39.00, where Mem_PoolCreate, Mem_DynPoolCreate, and Mem_DynPoolCreateHW can overflow when pool sizes exceed address space due to multiplication in size calculations. This can yield a smaller-than-expected memory pool and may be ex...

9.8CVSS9.4AI score0.01939EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.4 views

Silicon Labs Micriμm OS 输入验证错误漏洞

Silicon Labs Micriμm OS is an operating system from Silicon Labs, Inc. Important task scheduling and multitasking services are provided to ensure that the code is updated and extended even with new features on a regular basis. An input validation error vulnerability exists in Silicon Labs Micriμm...

6.5CVSS6.8AI score0.00827EPSS
Exploits0References6
OSV
OSV
added 2021/02/10 10:15 p.m.5 views

CVE-2020-13583

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS7.2AI score0.01881EPSS
Exploits1References1
NVD
NVD
added 2021/02/10 10:15 p.m.35 views

CVE-2020-13583

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS0.01881EPSS
Exploits1References1
Prion
Prion
added 2021/02/10 10:15 p.m.13 views

Cross site request forgery (csrf)

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

5CVSS7.3AI score0.01881EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/02/10 9:39 p.m.60 views

CVE-2020-13583

CVE-2020-13583 affects Micrium uC-HTTP 3.01.00. TALOS details describe a denial-of-service caused by a NULL pointer dereference in the uC-HTTP server when handling multipart form data; specifically, if FormCfgPtr is NULL or FormBoundaryPtr is not allocated, HTTPsReq_HdrParse can dereference a NUL...

8.6CVSS7.3AI score0.01881EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/02/10 9:39 p.m.39 views

CVE-2020-13583

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS7.4AI score0.01881EPSS
Exploits1References1
Talos Blog
Talos Blog
added 2021/01/28 11:0 a.m.36 views

Threat Source newsletter (Jan. 28, 2021)

Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers. Unfortunately, I don’t have any stock tips to give you to help you get rich overnight. But I do have two Vulnerability Spotlights you should read so your network can stay safer. We disclosed multiple vulnerabilities in phpGACL and...

0.4AI score
Exploits0
OSV
OSV
added 2021/01/26 7:15 p.m.5 views

CVE-2020-13582

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS7.2AI score0.02612EPSS
Exploits1References1
NVD
NVD
added 2021/01/26 7:15 p.m.36 views

CVE-2020-13582

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS7.6AI score0.02612EPSS
Exploits1References1
Prion
Prion
added 2021/01/26 7:15 p.m.14 views

Cross site request forgery (csrf)

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

5CVSS7.3AI score0.02612EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/01/26 6:15 p.m.54 views

CVE-2020-13582

Micrium uC-HTTP 3.01.00’s HTTP Server contains a denial-of-service vulnerability due to an unchecked return value in the header-parsing path. Specifically, in the boundary parsing of multipart forms, Str_Char_N may return NULL, and the code proceeds to dereference it, causing a crash (segmentatio...

8.6CVSS7.3AI score0.02612EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/26 6:15 p.m.41 views

CVE-2020-13582

A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS7.4AI score0.02612EPSS
Exploits1References1
Talos Blog
Talos Blog
added 2021/01/26 11:57 a.m.29 views

Vulnerability Spotlight: Denial-of-service vulnerabilities in Micrium uc-HTTP’s HTTP server

Kelly Leuschner of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered two vulnerabilities in Micrium uc-HTTP’s HTTP server that could cause denial-of-service conditions. An attacker could trigger these vulnerabilities by targeting the user machine...

0.3AI score
Exploits0
Talos
Talos
added 2021/01/26 12:0 a.m.56 views

Micrium uC-HTTP HTTP Server unchecked return value denial-of-service vulnerability

Summary A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Micrium uC-HTTP 3.01.00 Product URLs...

8.6CVSS7.6AI score0.02612EPSS
Exploits1
Talos
Talos
added 2021/01/26 12:0 a.m.128 views

Micrium uC-HTTP HTTP Server null pointer dereference denial-of-service vulnerability

Summary A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Micrium uC-HTTP 3.01.00 Product URLs...

8.6CVSS7.6AI score0.01881EPSS
Exploits1
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.5 views

Micrium uC-HTTP Code Issue Vulnerability

Micrium uC-HTTP is a software from Micrium USA that provides TCP/IP functionality for devices. The software is designed for embedded applications with a compact, reliable, high-performance TCP/IP stack with dual support for IPv4 and IPv6. A code issue vulnerability exists in Micrium uC-HTTP versi...

8.6CVSS5.9AI score0.01881EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2017/01/10 12:18 a.m.8 views

micrium.com XSS vulnerability

Vulnerable URL: https://www.micrium.com/downloadcenter/download-results/?searchterm='=true Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 256383 VIP website status:| No Check...

6.3AI score
Exploits0
Rows per page
Query Builder