CVE-2021-34268
First published: Thu Jul 22 2021(Updated: )
An issue in the USBH_ParseDevDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) via a malformed USB device packet.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| St Stm32cube Middleware | <=1.8.0 | |
| St Stm32h7b3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue in STMicroelectronics STM32Cube Middleware?
The vulnerability ID for this issue in STMicroelectronics STM32Cube Middleware is CVE-2021-34268.
What is the affected version of STMicroelectronics STM32Cube Middleware?
The affected version of STMicroelectronics STM32Cube Middleware is v1.8.0 and below.
What is the severity rating of CVE-2021-34268?
The severity rating of CVE-2021-34268 is medium with a CVSS score of 4.6.
What is the impact of this vulnerability?
This vulnerability in STMicroelectronics STM32Cube Middleware can cause a denial of service (DOS) via a malformed USB device packet.
Is the STMicroelectronics STM32h7b3 affected by this vulnerability?
No, the STMicroelectronics STM32h7b3 is not affected by this vulnerability.
Where can I find more information about this vulnerability?
More information about this vulnerability can be found at: https://github.com/STMicroelectronics/STM32CubeH7/issues/75
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/st
- canonical/st stm32cube middleware
- version/st stm32cube middleware/1.8.0
- canonical/st stm32h7b3