Vulnerability Details CVE-2021-34260
A buffer overflow vulnerability in the USBH_ParseInterfaceDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.7%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 4.6
References
Products affected by CVE-2021-34260
-
cpe:2.3:a:st:stm32cube_middleware:*
-
cpe:2.3:h:st:stm32h7b3:-