Submit #588106: uYanki board-stm32f103rc-berial 0.0 Buffer Overflowinfo

TiteluYanki board-stm32f103rc-berial 0.0 Buffer Overflow
BeschreibungThe function heartrate1_i2c_hal_write() contains a stack-based buffer overflow vulnerability (CWE-787). It copies num + 1 bytes of data into a fixed-size buffer buffer[MAX_READ_SIZE] without verifying if num + 1 exceeds the buffer's capacity. An attacker could exploit this by providing a large num value, leading to arbitrary code execution, system crash, or unauthorized access. More details: https://github.com/uYanki/board-stm32f103rc-berial/issues/3
Quelle⚠️ https://github.com/uYanki/board-stm32f103rc-berial/issues/3
Benutzer
 ybdesire (UID 83239)
Einreichung31.05.2025 15:15 (vor 1 Jahr)
Moderieren15.06.2025 08:47 (15 days later)
StatusAkzeptiert
VulDB Eintrag312562 [uYanki board-stm32f103rc-berial bis 84daed541609cb7b46854cc6672a275d1007e295 heartrate1_hal.c heartrate1_i2c_hal_write num Pufferüberlauf]
Punkte20

ZurückÜbersichtWeiter

Want to know what is going to be exploited?

We predict KEV entries!