CVE-2021-34262: Buffer Overflow
First published: Thu Jul 22 2021(Updated: )
A buffer overflow vulnerability in the USBH_ParseEPDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| St Stm32cube Middleware | <=1.8.0 | |
| St Stm32h7b3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this buffer overflow vulnerability?
The vulnerability ID for this buffer overflow vulnerability is CVE-2021-34262.
What is the affected software version?
The affected software version is STMicroelectronics STM32Cube Middleware v1.8.0 and below.
What is the severity rating of this vulnerability?
The severity rating of this vulnerability is medium (CVSS score: 6.8).
How can attackers exploit this vulnerability?
Attackers can exploit this vulnerability to execute arbitrary code.
Is STMicroelectronics STM32h7b3 affected by this vulnerability?
No, STMicroelectronics STM32h7b3 is not affected by this vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/st
- canonical/st stm32cube middleware
- version/st stm32cube middleware/1.8.0
- canonical/st stm32h7b3