Integer Overflow Vulnerability in malloc for FreeRTOS on Texas Instruments Devices

Integer Overflow Vulnerability in malloc for FreeRTOS on Texas Instruments Devices

CVE-2021-27504 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.

Learn more about our Web Application Penetration Testing UK.