Unrated severityNVD Advisory· Published Oct 21, 2022· Updated May 7, 2025
STM32 USB Host Library Buffer Overflow
CVE-2021-42553
Description
A buffer overflow vulnerability in stm32_mw_usb_host of STMicroelectronics in versions before 3.5.1 allows an attacker to execute arbitrary code when the descriptor contains more endpoints than USBH_MAX_NUM_ENDPOINTS. The library is typically integrated when using a RTOS such as FreeRTOS on STM32 MCUs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: < 3.5.1
- STMicroelectronics STM32Cube/STM32 USB Host Libraryv5Range: all
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.