CVE-2021-22677

Summary

CVE	CVE-2021-22677
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-05-07 16:15:00 UTC
Updated	2021-05-17 18:49:00 UTC
Description	An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).

Risk And Classification

Problem Types: CWE-190

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Ti	Cc3100 Software Development Kit	All	All	All	All
Application	Ti	Cc3100 Software Development Kit	All	All	All	All
Application	Ti	Cc3200 Software Development Kit	All	All	All	All
Application	Ti	Cc3200 Software Development Kit	All	All	All	All
Application	Ti	Simplelink Cc13x0 Software Development Kit	All	All	All	All
Application	Ti	Simplelink Cc13x2 Software Development Kit	All	All	All	All
Application	Ti	Simplelink Cc26xx Software Development Kit	All	All	All	All
Application	Ti	Simplelink Cc32xx Software Development Kit	All	All	All	All
Application	Ti	Simplelink Cc32xx Software Development Kit	All	All	All	All
Application	Ti	Simplelink Msp432e4 Software Development Kit	All	All	All	All
Application	Ti	Simplelink Msp432e4 Software Development Kit	All	All	All	All

References

Reference	Source	Link	Tags
Texas Instruments SimpleLink \| CISA	MISC	us-cert.cisa.gov
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

590531 Texas Instruments SimpleLink Multiple Vulnerabilities (ICSA-21-119-01)