CVE-2024-22905

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-22905
Buffer Overflow vulnerability in ARM mbed-os v.6.17.0 allows a remote attacker to execute arbitrary code via a crafted script to the hciTrSerialRxIncoming function.
CVSS

No CVSS.

References
Link Resource
https://github.com/ARMmbed/mbed-os/blob/7c7d20da6527885237094d9d50ce099404414201/connectivity/FEATURE_BLE/source/cordio/stack_adaptation/hci_tr.c#L125
https://github.com/ARMmbed/mbed-os/blob/7c7d20da6527885237094d9d50ce099404414201/connectivity/FEATURE_BLE/source/cordio/stack_adaptation/hci_tr.c#L173-L175
https://github.com/ARMmbed/mbed-os/issues/15462
Configurations

No configuration.

History

22 Apr 2024, 13:28

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de desbordamiento de búfer en ARM mbed-os v.6.17.0 permite a un atacante remoto ejecutar código arbitrario a través de un script manipulado para la función hciTrSerialRxIncoming.

19 Apr 2024, 21:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-04-19 21:15

Updated : 2024-04-22 13:28

NVD link : CVE-2024-22905

Mitre link : CVE-2024-22905

CVE.ORG link : CVE-2024-22905

JSON object : View

Products Affected

No product.

CWE

No CWE.