Vulnerabilities > CVE-2021-34268 - Unspecified vulnerability in ST Stm32Cube Middleware

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

NVD

Published: 2021-07-22

Updated: 2021-08-03

Summary

An issue in the USBH_ParseDevDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) via a malformed USB device packet.

Vulnerable Configurations

Part	Description	Count
Application	St ST Stm32Cube Middleware *	1
Hardware	St ST Stm32H7B3 -	1

References

https://github.com/STMicroelectronics/STM32CubeH7/issues/75