CVSS: 5.3EPSS: 0%CPEs: 15EXPL: 1CVE-2021-21966
https://notcve.org/view.php?id=CVE-2021-21966
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de divulgación de información en la funcionalidad HTTP Server /ping.html de Texas Instruments CC3200 SimpleLink Solution NWP versión 2.9.0.0. Una petición HTTP especialmente diseñada puede conllevar a una lectura no inicializada. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1393 https://www.ti.com/lit/an/swra740/swra740.pdf?ts=1645536893264& • CWE-457: Use of Uninitialized Variable CWE-908: Use of Uninitialized Resource •