CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-27421 – NXP MCUXpresso SDK Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27421
03 May 2022 — NXP MCUXpresso SDK versions prior to 2.8.2 are vulnerable to integer overflow in SDK_Malloc function, which could allow to access memory locations outside the bounds of a specified array, leading to unexpected behavior such segmentation fault when assigning a particular block of memory from the heap via malloc. • https://mcuxpresso.nxp.com/en/welcome • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2021-27431 – ARM CMSIS RTOS2 Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27431
03 May 2022 — ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc (local malloc equivalent) function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or injected code execution. • https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 12%CPEs: 1EXPL: 1CVE-2021-27435 – ARM mbed Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27435
03 May 2022 — ARM mbed product Version 6.3.0 is vulnerable to integer wrap-around in malloc_wrapper function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. • https://github.com/ARMmbed/mbed-os/pull/14408 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 14%CPEs: 1EXPL: 0CVE-2021-27425 – Cesanta Software Mongoose-OS Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27425
03 May 2022 — Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. • https://github.com/cesanta/mongoose-os • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 12%CPEs: 1EXPL: 0CVE-2021-27419 – uClibc-ng Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27419
03 May 2022 — uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc-simple. • https://downloads.uclibc-ng.org/releases • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-27411 – Micrium OS Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27411
03 May 2022 — Micrium OS Versions 5.10.1 and prior are vulnerable to integer wrap-around in functions Mem_DynPoolCreate, Mem_DynPoolCreateHW and Mem_PoolCreate. • https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-27417 – eCosCentric eCosPro RTOS Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27417
03 May 2022 — eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in function calloc (an implementation of malloc). • https://bugzilla.ecoscentric.com/show_bug.cgi?id=1002437 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 14%CPEs: 1EXPL: 0CVE-2021-27427 – RIOT OS Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27427
03 May 2022 — RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. • https://github.com/RIOT-OS/RIOT • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 56EXPL: 0CVE-2022-21743
https://notcve.org/view.php?id=CVE-2022-21743
03 May 2022 — In ion, there is a possible use after free due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/May-2022 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.9EPSS: 0%CPEs: 77EXPL: 0CVE-2022-20107
https://notcve.org/view.php?id=CVE-2022-20107
03 May 2022 — In subtitle service, there is a possible application crash due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/May-2022 • CWE-190: Integer Overflow or Wraparound •