Vulnerabilities > TI

DATE CVE VULNERABILITY TITLE RISK
2023-11-21 CVE-2021-27502 Integer Overflow or Wraparound vulnerability in TI products
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
local
low complexity
ti CWE-190
7.8
2023-11-21 CVE-2021-27504 Integer Overflow or Wraparound vulnerability in multiple products
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.
local
low complexity
amazon ti CWE-190
7.8
2023-11-20 CVE-2021-22636 Integer Overflow or Wraparound vulnerability in TI products
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
local
low complexity
ti CWE-190
7.8
2023-11-20 CVE-2021-27429 Integer Overflow or Wraparound vulnerability in TI products
Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values.
local
low complexity
ti CWE-190
7.8
2023-10-19 CVE-2022-25332 Information Exposure Through Discrepancy vulnerability in TI Omap L138 Firmware
The AES implementation in the Texas Instruments OMAP L138 (secure variants), present in mask ROM, suffers from a timing side channel which can be exploited by an adversary with non-secure supervisor privileges by managing cache contents and collecting timing information for different ciphertext inputs.
local
high complexity
ti CWE-203
4.1
2023-10-19 CVE-2022-25333 Unspecified vulnerability in TI Omap L138 Firmware
The Texas Instruments OMAP L138 (secure variants) trusted execution environment (TEE) performs an RSA check implemented in mask ROM when loading a module through the SK_LOAD routine.
local
low complexity
ti
8.8
2023-10-19 CVE-2022-25334 Out-of-bounds Write vulnerability in TI Omap L138 Firmware
The Texas Instruments OMAP L138 (secure variants) trusted execution environment (TEE) lacks a bounds check on the signature size field in the SK_LOAD module loading routine, present in mask ROM.
local
low complexity
ti CWE-787
8.8
2023-08-14 CVE-2023-29468 Classic Buffer Overflow vulnerability in TI Wilink8-Wifi-Mcp8 8.5
The Texas Instruments (TI) WiLink WL18xx MCP driver does not limit the number of information elements (IEs) of type XCC_EXT_1_IE_ID or XCC_EXT_2_IE_ID that can be parsed in a management frame.
network
low complexity
ti CWE-120
critical
9.8
2022-02-16 CVE-2021-21966 Use of Uninitialized Resource vulnerability in TI products
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0.
network
low complexity
ti CWE-908
5.0
2021-09-20 CVE-2020-16630 Incorrect Authorization vulnerability in TI products
TI’s BLE stack caches and reuses the LTK’s property for a bonded mobile.
4.3