Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stmicroelectronics vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-8004
STMicroelectronics STM32F1 devices have Incorrect Access Control.
St Stm32f1 Firmware -
2 Github repositories
6.1
CVSSv3
CVE-2021-29414
STMicroelectronics STM32L4 devices through 2021-03-29 have incorrect physical access control.
St Stm32cubel4 Firmware
6.8
CVSSv3
CVE-2021-34260
A buffer overflow vulnerability in the USBH_ParseInterfaceDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows malicious users to execute arbitrary code.
St Stm32cube Middleware
6.8
CVSSv3
CVE-2021-34262
A buffer overflow vulnerability in the USBH_ParseEPDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows malicious users to execute arbitrary code.
St Stm32cube Middleware
6.8
CVSSv3
CVE-2021-34259
A buffer overflow vulnerability in the USBH_ParseCfgDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows malicious users to execute arbitrary code.
St Stm32cube Middleware
4.6
CVSSv3
CVE-2021-34268
An issue in the USBH_ParseDevDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) via a malformed USB device packet.
St Stm32cube Middleware
6.8
CVSSv3
CVE-2020-13466
STMicroelectronics STM32F103 devices through 2020-05-20 allow physical malicious users to execute arbitrary code via a power glitch and a specific flash patch/breakpoint unit configuration.
St Stm32f103 Firmware
1 Github repository
4.6
CVSSv3
CVE-2021-34267
An in the USBH_MSC_InterfaceInit() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) when the system tries to communicate with the connected endpoint.
St Stm32cube Middleware
4.6
CVSSv3
CVE-2021-34261
An issue in USBH_ParseCfgDesc() of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service due to the system hanging when trying to set a remote wake-up feature.
St Stm32cube Middleware
6.6
CVSSv3
CVE-2019-14238
On STMicroelectronics STM32F7 devices, Proprietary Code Read Out Protection (PCROP) (a software IP protection method) can be defeated with a debug probe via the Instruction Tightly Coupled Memory (ITCM) bus.
St Stm32l0 Firmware -
St Stm32l1 Firmware -
St Stm32f4 Firmware -
St Stm32l4 Firmware -
St Stm32f7 Firmware -
St Stm32h7 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »