Multiple vulnerabilities in Texas Instruments SimpleLink



Published: 2021-05-03
Risk High
Patch available YES
Number of vulnerabilities 5
CVE-ID CVE-2021-22677
CVE-2021-22673
CVE-2021-22675
CVE-2021-22679
CVE-2021-22671
CWE-ID CWE-190
CWE-121
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		SimpleLink MSP432E4 SDK
Hardware solutions / Firmware

SimpleLink CC32XX SDK
Hardware solutions / Firmware

SimpleLink CC13X0 SDK
Hardware solutions / Firmware

SimpleLink CC13X2 SDK
Hardware solutions / Firmware

SimpleLink CC26XX SDK
Hardware solutions / Firmware

CC3200 SDK
Hardware solutions / Firmware

CC3100 SDK
Hardware solutions / Firmware

Vendor Texas Instruments

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) Integer overflow

EUVDB-ID: #VU52786

Risk: Low

CVSSv3.1: 7.3 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-22677

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local attacker to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow in the APIs of the host MCU. A local attacker can pass specially crafted data to the application, trigger integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SimpleLink MSP432E4 SDK: 4.20.00.12

SimpleLink CC32XX SDK: 4.30.00.06

SimpleLink CC13X0 SDK: before 4.10.03

SimpleLink CC13X2 SDK: before 4.40.00

SimpleLink CC26XX SDK: before 4.40.00

CC3200 SDK: 1.5.0

CC3100 SDK: 1.3.0

External links

http://ics-cert.us-cert.gov/advisories/icsa-21-119-01


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Stack-based buffer overflow

EUVDB-ID: #VU52787

Risk: Medium

CVSSv3.1: 7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-22673

CWE-ID: CWE-121 - Stack-based buffer overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing over-the-air firmware updates from the CDN server. A remote authenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SimpleLink MSP432E4 SDK: 4.20.00.12

SimpleLink CC32XX SDK: 4.30.00.06

SimpleLink CC13X0 SDK: before 4.10.03

SimpleLink CC13X2 SDK: before 4.40.00

SimpleLink CC26XX SDK: before 4.40.00

CC3200 SDK: 1.5.0

CC3100 SDK: 1.3.0

External links

http://ics-cert.us-cert.gov/advisories/icsa-21-119-01


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Integer overflow

EUVDB-ID: #VU52788

Risk: Low

CVSSv3.1: 6.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-22675

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow while parsing malformed over-the-air firmware update files. A remote administrator can pass specially crafted data to the application, trigger integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SimpleLink MSP432E4 SDK: 4.20.00.12

SimpleLink CC32XX SDK: 4.30.00.06

SimpleLink CC13X0 SDK: before 4.10.03

SimpleLink CC13X2 SDK: before 4.40.00

SimpleLink CC26XX SDK: before 4.40.00

CC3200 SDK: 1.5.0

CC3100 SDK: 1.3.0

External links

http://ics-cert.us-cert.gov/advisories/icsa-21-119-01


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Integer overflow

EUVDB-ID: #VU52789

Risk: High

CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-22679

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow while processing HTTP headers. A remote attacker can pass specially crafted data to the application, trigger integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SimpleLink MSP432E4 SDK: 4.20.00.12

SimpleLink CC32XX SDK: 4.30.00.06

SimpleLink CC13X0 SDK: before 4.10.03

SimpleLink CC13X2 SDK: before 4.40.00

SimpleLink CC26XX SDK: before 4.40.00

CC3200 SDK: 1.5.0

CC3100 SDK: 1.3.0

External links

http://ics-cert.us-cert.gov/advisories/icsa-21-119-01


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Integer overflow

EUVDB-ID: #VU52791

Risk: High

CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-22671

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow while processing long domain names. A remote attacker can pass specially crafted data to the application, trigger integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SimpleLink MSP432E4 SDK: 4.20.00.12

SimpleLink CC32XX SDK: 4.30.00.06

SimpleLink CC13X0 SDK: before 4.10.03

SimpleLink CC13X2 SDK: before 4.40.00

SimpleLink CC26XX SDK: before 4.40.00

CC3200 SDK: 1.5.0

CC3100 SDK: 1.3.0

External links

http://ics-cert.us-cert.gov/advisories/icsa-21-119-01


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###