CVE-2021-27504

CVSS V2 None CVSS V3 None
Description
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.
Overview
  • CVE ID
  • CVE-2021-27504
  • Assigner
  • icscert
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-11-21T17:43:12.120Z
  • Last Modified Date
  • 2023-11-21T17:43:12.120Z
Weakness Enumerations
CWE URL
CWE-190 http://cwe.mitre.org/data/definitions/190.html
References
Reference URL Reference Tags
https://www.cisa.gov/news-events/ics-advisories/icsa-21-119-04
https://www.ti.com/tool/TI-RTOS-MCU
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2021-27504
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27504
History
Created Old Value New Value Data Type Notes
2024-06-24 15:25:15 Added to TrackCVE