6 matches found
CVE-2021-34260
The vulnerability CVE-2021-34260 is a buffer overflow in STMicroelectronics STM32Cube Middleware, specifically in USBH_ParseInterfaceDesc() for v1.8.0 and earlier. This flaw can enable arbitrary code execution. Public details describe the affected component and impact, but do not provide a patch ...
CVE-2021-34267
CVE-2021-34267 affects STMicroelectronics STM32Cube Middleware ≤ v1.8.0, with a vulnerability in the USBH_MSC_InterfaceInit() function that can cause a denial of service when the system communicates with the connected endpoint. The connected documents confirm the affected component is STM32Cube M...
CVE-2021-34268
The CVE-2021-34268 issue affects STMicroelectronics STM32Cube Middleware (v1.8.0 and earlier), where the USBH_ParseDevDesc() function can be triggered by a malformed USB device packet to cause a denial of service. Connected sources confirm the vulnerable component and the exact function, but do n...
CVE-2021-34262
The CVE covers a buffer overflow in the USBH_ParseEPDesc() function of STMicroelectronics STM32Cube Middleware, affecting version 1.8.0 and earlier. The vulnerability can enable an attacker to execute arbitrary code, with the affected component being the STM32Cube Middleware USB host library and ...
CVE-2021-34261
The CVE-2021-34261 issue affects STMicroelectronics STM32Cube Middleware, specifically versions
CVE-2021-34259
CVE-2021-34259 describes a buffer overflow in the USBH_ParseCfgDesc() function of STMicroelectronics STM32Cube Middleware ≤ v1.8.0. The vulnerability can lead to arbitrary code execution on affected STM32Cube middleware in embedded contexts. Details consistently cite the vulnerable component and ...