Unrated severityNVD Advisory· Published May 3, 2022· Updated Apr 16, 2025
ARM mbed-ualloc memory library Integer Overflow or Wraparound
CVE-2021-27433
Description
ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function mbed_krbs, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =1.3.0
- ARM/mbed-ualloc memory libraryv5Range: 1.3.0
Patches
Vulnerability mechanics
References
2- github.com/ARMmbed/mbed-os/pull/14408mitrex_refsource_CONFIRM
- www.cisa.gov/uscert/ics/advisories/icsa-21-119-04mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.