CVE-2021-26461
published 2021-06-21CVE-2021-26461: Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | nuttx | < 10.1.0 | 10.1.0 |
| apache_software_foundation | apache_nuttx | >= Apache NuttX < 10.1.0 | 10.1.0 |