CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27504

Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.0%

CVSS Severity

CVSS v3 Score 7.4

References

Products affected by CVE-2021-27504

Ti » Simplelink Cc13xx Software Development Kit » Version: Any

cpe:2.3:a:ti:simplelink_cc13xx_software_development_kit:*
Ti » Simplelink Cc26xx Software Development Kit » Version: Any

cpe:2.3:a:ti:simplelink_cc26xx_software_development_kit:*
Ti » Simplelink Cc32xx Software Development Kit » Version: N/A

cpe:2.3:a:ti:simplelink_cc32xx_software_development_kit:-
Ti » Simplelink Msp432e401y » Version: N/A

cpe:2.3:a:ti:simplelink_msp432e401y:-
Ti » Simplelink Msp432e411y » Version: N/A

cpe:2.3:a:ti:simplelink_msp432e411y:-
Amazon » Freertos » Version: 10.4.1

cpe:2.3:o:amazon:freertos:10.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27504

Products

Pricing

Contact Us