Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ti vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-48656
In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get() We should call of_node_put() for the reference returned by of_parse_phandle() in fail path or when it is not used anymore. Here we only ...
NA
CVE-2024-26771
In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: edma: Add some null pointer checks to the edma_probe devm_kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by check...
NA
CVE-2024-26607
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x: Fix probing race issue A null pointer dereference crash has been observed rarely on TI platforms using sii9022 bridge: [ 53.271356] sii902x_get_edid+0x34/0x70 [sii902x] [ 53.276066] sii902x_b...
5.5
CVSSv3
CVE-2024-26600
In the Linux kernel, the following vulnerability has been resolved: phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP If the external phy working together with phy-omap-usb2 does not implement send_srp(), we may still attempt to call it. This can happen on an idle Ethe...
Linux Linux Kernel
NA
CVE-2024-24474
QEMU prior to 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.
7.8
CVSSv3
CVE-2021-27502
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
Ti Real-time Operating System -
Ti Simplelink Cc26xx Software Development Kit
Ti Simplelink Cc13xx Software Development Kit
Ti Simplelink Cc32xx Software Development Kit
Ti Simplelink Msp432e411y -
Ti Simplelink Msp432e401y -
7.8
CVSSv3
CVE-2021-27504
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.
Amazon Freertos 10.4.1
Ti Simplelink Cc26xx Software Development Kit
Ti Simplelink Cc13xx Software Development Kit
Ti Simplelink Cc32xx Software Development Kit
Ti Simplelink Msp432e411y -
Ti Simplelink Msp432e401y -
7.8
CVSSv3
CVE-2021-22636
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
Ti Real-time Operating System -
Ti Simplelink Cc26xx Software Development Kit
Ti Simplelink Cc13xx Software Development Kit
Ti Simplelink Cc32xx Software Development Kit
Ti Simplelink Msp432e411y -
Ti Simplelink Msp432e401y -
7.8
CVSSv3
CVE-2021-27429
Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values. This can trigger an integer overflow vulnerability in 'HeapTrack_alloc' and result in code execution.
Ti Real-time Operating System -
Ti Simplelink Cc26xx Software Development Kit
Ti Simplelink Cc13xx Software Development Kit
Ti Simplelink Cc32xx Software Development Kit
Ti Simplelink Msp432e411y -
Ti Simplelink Msp432e401y -
4.1
CVSSv3
CVE-2022-25332
The AES implementation in the Texas Instruments OMAP L138 (secure variants), present in mask ROM, suffers from a timing side channel which can be exploited by an adversary with non-secure supervisor privileges by managing cache contents and collecting timing information for diffe...
Ti Omap L138 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »