CVE-2021-40154

CVSS 6.1 MEDIUMEPSS 0.7%

NXP LPC55S69 devices before A3 have a buffer over-read via a crafted wlength value in a GET Descriptor Configuration request during use of USB In-System Programming (ISP) mode. This discloses protected flash memory.

CVSS:3.1/AC:L/AV:L/A:L/C:H/I:N/PR:L/S:U/UI:N

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/Xen1thLabs-AE/CVE-2021-40154 https://www.darkmatter.ae/xen1thlabs/published-advisories/