Submeter #588106: uYanki board-stm32f103rc-berial 0.0 Buffer Overflowinformação

Título	uYanki board-stm32f103rc-berial 0.0 Buffer Overflow
Descrição	The function heartrate1_i2c_hal_write() contains a stack-based buffer overflow vulnerability (CWE-787). It copies num + 1 bytes of data into a fixed-size buffer buffer[MAX_READ_SIZE] without verifying if num + 1 exceeds the buffer's capacity. An attacker could exploit this by providing a large num value, leading to arbitrary code execution, system crash, or unauthorized access. More details: https://github.com/uYanki/board-stm32f103rc-berial/issues/3
Fonte	⚠️ https://github.com/uYanki/board-stm32f103rc-berial/issues/3
Utilizador	ybdesire (UID 83239)
Submissão	31/05/2025 15h15 (há 1 Ano)
Moderação	15/06/2025 08h47 (15 days later)
Estado	Aceite
Entrada VulDB	312562 [uYanki board-stm32f103rc-berial até 84daed541609cb7b46854cc6672a275d1007e295 heartrate1_hal.c heartrate1_i2c_hal_write num Excesso de tampão]
Pontos	20

Interested in the pricing of exploits?

See the underground prices here!