Unrated severityNVD Advisory· Published Feb 7, 2022· Updated Sep 16, 2024
The RNDIS USB device class includes a buffer overflow vulnerability
CVE-2021-3861
Description
The RNDIS USB device class includes a buffer overflow vulnerability. Zephyr versions >= v2.6.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hvfp-w4h8-gxvj
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>= v2.6.0+ 1 more
- (no CPE)range: >= v2.6.0
- (no CPE)range: v2.6.0
Patches
Vulnerability mechanics
References
1- github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hvfp-w4h8-gxvjmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.