Show filters
39 Total Results
Displaying 11-20 of 39
Sort by:
Attacker Value
Unknown

CVE-2021-44734

Disclosure Date: January 20, 2022 (last updated February 23, 2025)
Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.
Attacker Value
Unknown

CVE-2021-44738

Disclosure Date: January 20, 2022 (last updated February 23, 2025)
Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.
Attacker Value
Unknown

CVE-2021-34260

Disclosure Date: July 22, 2021 (last updated February 23, 2025)
A buffer overflow vulnerability in the USBH_ParseInterfaceDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code.
Attacker Value
Unknown

CVE-2021-34262

Disclosure Date: July 22, 2021 (last updated February 23, 2025)
A buffer overflow vulnerability in the USBH_ParseEPDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code.
Attacker Value
Unknown

CVE-2021-34268

Disclosure Date: July 22, 2021 (last updated November 28, 2024)
An issue in the USBH_ParseDevDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) via a malformed USB device packet.
Attacker Value
Unknown

CVE-2021-34261

Disclosure Date: July 22, 2021 (last updated November 28, 2024)
An issue in USBH_ParseCfgDesc() of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service due to the system hanging when trying to set a remote wake-up feature.
Attacker Value
Unknown

CVE-2021-34267

Disclosure Date: July 22, 2021 (last updated November 28, 2024)
An in the USBH_MSC_InterfaceInit() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) when the system tries to communicate with the connected endpoint.
Attacker Value
Unknown

CVE-2021-34259

Disclosure Date: July 22, 2021 (last updated February 23, 2025)
A buffer overflow vulnerability in the USBH_ParseCfgDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code.
Attacker Value
Unknown

CVE-2021-29414

Disclosure Date: May 21, 2021 (last updated February 22, 2025)
STMicroelectronics STM32L4 devices through 2021-03-29 have incorrect physical access control.
Attacker Value
Unknown

CVE-2020-27212

Disclosure Date: May 21, 2021 (last updated February 22, 2025)
STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection (RDP) can be degraded from RDP level 2 (no access via debug interface) to level 1 (limited access via debug interface) by injecting a fault during the boot phase.