CVE-2021-21966
 
Severity Score
5.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability.
Se presenta una vulnerabilidad de divulgación de información en la funcionalidad HTTP Server /ping.html de Texas Instruments CC3200 SimpleLink Solution NWP versión 2.9.0.0. Una petición HTTP especialmente diseñada puede conllevar a una lectura no inicializada. Un atacante puede enviar una petición HTTP para desencadenar esta vulnerabilidad
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-01-04 CVE Reserved
- 2022-02-16 CVE Published
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- 2024-11-01 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-457: Use of Uninitialized Variable
- CWE-908: Use of Uninitialized Resource
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1393 | 2024-08-03 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://www.ti.com/lit/an/swra740/swra740.pdf?ts=1645536893264& | 2022-07-21 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3120 Search vendor "Ti" for product "Cc3120" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3130 Search vendor "Ti" for product "Cc3130" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3135 Search vendor "Ti" for product "Cc3135" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3220r Search vendor "Ti" for product "Cc3220r" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3220s Search vendor "Ti" for product "Cc3220s" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3220sf Search vendor "Ti" for product "Cc3220sf" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3230s Search vendor "Ti" for product "Cc3230s" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3230sf Search vendor "Ti" for product "Cc3230sf" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3235s Search vendor "Ti" for product "Cc3235s" | - | - |
Safe
|
Ti Search vendor "Ti" | Simplelink Cc32xx Software Development Kit Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" | < 5.30.00.08 Search vendor "Ti" for product "Simplelink Cc32xx Software Development Kit" and version " < 5.30.00.08" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3235sf Search vendor "Ti" for product "Cc3235sf" | - | - |
Safe
|
Ti Search vendor "Ti" | Cc3100 Firmware Search vendor "Ti" for product "Cc3100 Firmware" | < 1.0.1.15-2.15.0.1 Search vendor "Ti" for product "Cc3100 Firmware" and version " < 1.0.1.15-2.15.0.1" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3100 Search vendor "Ti" for product "Cc3100" | - | - |
Safe
|
Ti Search vendor "Ti" | Cc3200 Firmware Search vendor "Ti" for product "Cc3200 Firmware" | < 1.0.1.15-2.15.0.1 Search vendor "Ti" for product "Cc3200 Firmware" and version " < 1.0.1.15-2.15.0.1" | - |
Affected
| in | Ti Search vendor "Ti" | Cc3200 Search vendor "Ti" for product "Cc3200" | - | - |
Safe
|