Medium severity4.6NVD Advisory· Published May 3, 2022· Updated Jun 17, 2026
CVE-2021-27417
CVE-2021-27417
Description
eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in function calloc (an implementation of malloc). The unverified memory assignment can lead to arbitrary memory allocation, resulting in a heap-based buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22.0.1 - 4.5.3+ 1 more
- (no CPE)range: 2.0.1 - 4.5.3
- (no CPE)range: 2.0.1
Patches
Vulnerability mechanics
References
2- bugzilla.ecoscentric.com/show_bug.cginvdPermissions RequiredVendor Advisory
- www.cisa.gov/uscert/ics/advisories/icsa-21-119-04nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.