إرسال #588106: uYanki board-stm32f103rc-berial 0.0 Buffer Overflowالمعلومات

عنوانuYanki board-stm32f103rc-berial 0.0 Buffer Overflow
الوصفThe function heartrate1_i2c_hal_write() contains a stack-based buffer overflow vulnerability (CWE-787). It copies num + 1 bytes of data into a fixed-size buffer buffer[MAX_READ_SIZE] without verifying if num + 1 exceeds the buffer's capacity. An attacker could exploit this by providing a large num value, leading to arbitrary code execution, system crash, or unauthorized access. More details: https://github.com/uYanki/board-stm32f103rc-berial/issues/3
المصدر⚠️ https://github.com/uYanki/board-stm32f103rc-berial/issues/3
المستخدم
 ybdesire (UID 83239)
ارسال31/05/2025 03:15 PM (1 سنة منذ)
الاعتدال15/06/2025 08:47 AM (15 days later)
الحالةتمت الموافقة
إدخال VulDB312562 [uYanki board-stm32f103rc-berial حتى 84daed541609cb7b46854cc6672a275d1007e295 heartrate1_hal.c heartrate1_i2c_hal_write num تلف الذاكرة]
النقاط20

التالي نظرة عامة السابق

Might our Artificial Intelligence support you?

Check our Alexa App!