MCUXpresso SDK
by Nxp
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-27421 | 0.00 | — | 0.01 | May 3, 2022 | NXP MCUXpresso SDK versions prior to 2.8.2 are vulnerable to integer overflow in SDK_Malloc function, which could allow to access memory locations outside the bounds of a specified array, leading to unexpected behavior such segmentation fault when assigning a particular block of… | |||
| CVE-2021-38260 | 0.00 | — | 0.00 | Oct 25, 2021 | NXP MCUXpresso SDK v2.7.0 was discovered to contain a buffer overflow in the function USB_HostParseDeviceConfigurationDescriptor(). | |||
| CVE-2021-38258 | 0.00 | — | 0.00 | Oct 25, 2021 | NXP MCUXpresso SDK v2.7.0 was discovered to contain a buffer overflow in the function USB_HostProcessCallback(). |
- CVE-2021-27421May 3, 2022risk 0.00cvss —epss 0.01
NXP MCUXpresso SDK versions prior to 2.8.2 are vulnerable to integer overflow in SDK_Malloc function, which could allow to access memory locations outside the bounds of a specified array, leading to unexpected behavior such segmentation fault when assigning a particular block of…
- CVE-2021-38260Oct 25, 2021risk 0.00cvss —epss 0.00
NXP MCUXpresso SDK v2.7.0 was discovered to contain a buffer overflow in the function USB_HostParseDeviceConfigurationDescriptor().
- CVE-2021-38258Oct 25, 2021risk 0.00cvss —epss 0.00
NXP MCUXpresso SDK v2.7.0 was discovered to contain a buffer overflow in the function USB_HostProcessCallback().