Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stmicroelectronics vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-8004
STMicroelectronics STM32F1 devices have Incorrect Access Control.
St Stm32f1 Firmware -
2 Github repositories
3.6
CVSSv2
CVE-2021-29414
STMicroelectronics STM32L4 devices through 2021-03-29 have incorrect physical access control.
St Stm32cubel4 Firmware
4.6
CVSSv2
CVE-2021-34259
A buffer overflow vulnerability in the USBH_ParseCfgDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows malicious users to execute arbitrary code.
St Stm32cube Middleware
4.6
CVSSv2
CVE-2021-34260
A buffer overflow vulnerability in the USBH_ParseInterfaceDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows malicious users to execute arbitrary code.
St Stm32cube Middleware
4.6
CVSSv2
CVE-2021-34262
A buffer overflow vulnerability in the USBH_ParseEPDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows malicious users to execute arbitrary code.
St Stm32cube Middleware
2.1
CVSSv2
CVE-2021-34268
An issue in the USBH_ParseDevDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) via a malformed USB device packet.
St Stm32cube Middleware
7.2
CVSSv2
CVE-2020-13466
STMicroelectronics STM32F103 devices through 2020-05-20 allow physical malicious users to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration.
St Stm32f103 Firmware
1 Github repository
2.1
CVSSv2
CVE-2021-34267
An in the USBH_MSC_InterfaceInit() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) when the system tries to communicate with the connected endpoint.
St Stm32cube Middleware
2.1
CVSSv2
CVE-2021-34261
An issue in USBH_ParseCfgDesc() of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service due to the system hanging when trying to set a remote wake-up feature.
St Stm32cube Middleware
4.6
CVSSv2
CVE-2019-14238
On STMicroelectronics STM32F7 devices, Proprietary Code Read Out Protection (PCROP) (a software IP protection method) can be defeated with a debug probe via the Instruction Tightly Coupled Memory (ITCM) bus.
St Stm32l0 Firmware -
St Stm32l1 Firmware -
St Stm32f4 Firmware -
St Stm32l4 Firmware -
St Stm32f7 Firmware -
St Stm32h7 Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »