受影响系统:
Texas Instruments SimpleLink MSP432E4 SDK <= 4.20.00.12
Texas Instruments SimpleLink CC32XX SDK <= 4.30.00.06
Texas Instruments SimpleLink CC13X0 SDK < 4.10.03
Texas Instruments SimpleLink CC13X2 SDK < 4.40.00
Texas Instruments SimpleLink CC26XX SDK < 4.40.00
Texas Instruments CC3200 SDK <= 1.5.0
Texas Instruments CC3100 SDK <= 1.3.0
描述:
--------------------------------------------------------------------------------
CVE(CAN) ID: CVE-2021-22671
Texas Instruments SimpleLink是美国德州仪器(Texas Instruments)公司的一个应用程序。提供了最广泛的差异化有线和无线Arm®MCU系列产品。
Texas Instruments SimpleLink存在整数溢出漏洞。攻击者可利用该漏洞导致远程代码执行。
<**>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Texas Instruments
-----------------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
https://www.ti.com/technologies/security/report-product-security-vulnerabilities.html