CVE-2021-22675

HIGH Year: 2021
CVSS v3 Score
7.2
High
CVSS v2 Score
6.5
Medium
Weakness Type
CWE-190
View all →

Vulnerability Description

The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may allow an attacker to remotely execute code on SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).

Related Vulnerabilities

CVE-2020-24397

HIGH
CVSS:7.2(High)

An issue was discovered in the client side of Zoho ManageEngine Desktop Central 10.0.0.SP-534. An attacker-controlled server can trigger an integer overflow in InternetSendRequestEx and InternetSendRe...

CWE-1902020

CVE-2022-0968

HIGH
CVSS:7.2(High)

The microweber application allows large characters to insert in the input field "fist & last name" which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request. in microwebe...

CWE-1902022

CVE-2022-1718

HIGH
CVSS:7.2(High)

The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in ...

CWE-1902022

CVE-2023-36401

HIGH
CVSS:7.2(High)

Microsoft Remote Registry Service Remote Code Execution Vulnerability

CWE-1902023

CVE-2023-45742

HIGH
CVSS:7.2(High)

An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code ex...

CWE-1902023

CVE-2024-38019

HIGH
CVSS:7.2(High)

Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability

CWE-1902024