| Título | uYanki board-stm32f103rc-berial 0.0 Buffer Overflow |
|---|
| Descripción | The function heartrate1_i2c_hal_write() contains a stack-based buffer overflow vulnerability (CWE-787). It copies num + 1 bytes of data into a fixed-size buffer buffer[MAX_READ_SIZE] without verifying if num + 1 exceeds the buffer's capacity. An attacker could exploit this by providing a large num value, leading to arbitrary code execution, system crash, or unauthorized access.
More details: https://github.com/uYanki/board-stm32f103rc-berial/issues/3 |
|---|
| Fuente | ⚠️ https://github.com/uYanki/board-stm32f103rc-berial/issues/3 |
|---|
| Usuario | ybdesire (UID 83239) |
|---|
| Sumisión | 2025-05-31 15:15 (hace 1 Año) |
|---|
| Moderación | 2025-06-15 08:47 (15 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 312562 [uYanki board-stm32f103rc-berial hasta 84daed541609cb7b46854cc6672a275d1007e295 heartrate1_hal.c heartrate1_i2c_hal_write num desbordamiento de búfer] |
|---|
| Puntos | 20 |
|---|