Vulnerabilities > TI > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-12 | CVE-2024-41629 | Cleartext Storage of Sensitive Information vulnerability in TI Fusion Digital Power Designer 7.10.1 An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to obtain sensitive information via the plaintext storage of credentials | 5.5 |
| 2023-10-19 | CVE-2022-25332 | Information Exposure Through Discrepancy vulnerability in TI Omap L138 Firmware The AES implementation in the Texas Instruments OMAP L138 (secure variants), present in mask ROM, suffers from a timing side channel which can be exploited by an adversary with non-secure supervisor privileges by managing cache contents and collecting timing information for different ciphertext inputs. | 4.1 |
| 2022-02-16 | CVE-2021-21966 | Use of Uninitialized Resource vulnerability in TI products An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. | 5.3 |
| 2021-09-20 | CVE-2020-16630 | Incorrect Authorization vulnerability in TI products TI’s BLE stack caches and reuses the LTK’s property for a bonded mobile. | 6.8 |
| 2021-09-07 | CVE-2021-34149 | Unspecified vulnerability in TI Cc256Xcqfn-Em Firmware The Bluetooth Classic implementation on the Texas Instruments CC256XCQFN-EM does not properly handle the reception of continuous LMP_AU_Rand packets, allowing attackers in radio range to trigger a denial of service (deadlock) of the device by flooding it with LMP_AU_Rand packets after the paging procedure. low complexity ti | 6.5 |
| 2021-01-26 | CVE-2021-3285 | Improper Certificate Validation vulnerability in TI Code Composer Studio Intgrated Development Environment jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS. | 5.3 |
| 2020-02-10 | CVE-2019-19193 | Unspecified vulnerability in TI Ble-Stack and Cc2640R2 Software Development KIT The Bluetooth Low Energy peripheral implementation on Texas Instruments SIMPLELINK-CC2640R2-SDK through 3.30.00.20 and BLE-STACK through 1.5.0 before Q4 2019 for CC2640R2 and CC2540/1 devices does not properly restrict the advertisement connection request packet on reception, allowing attackers in radio range to cause a denial of service (crash) via a crafted packet. low complexity ti | 6.5 |
| 2020-02-10 | CVE-2019-17520 | Classic Buffer Overflow vulnerability in TI Cc2640R2 Software Development KIT The Bluetooth Low Energy implementation on Texas Instruments SDK through 3.30.00.20 for CC2640R2 devices does not properly restrict the SM Public Key packet on reception, allowing attackers in radio range to cause a denial of service (crash) via crafted packets. | 6.5 |
| 2019-08-20 | CVE-2018-18056 | Information Exposure vulnerability in TI Tm4C123 Firmware and Tm4C129 Firmware An issue was discovered in the Texas Instruments (TI) TM4C, MSP432E and MSP432P microcontroller series. | 4.6 |