STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeA_ReceiveBytes buffer overflow in the X-CUBE-SAFEA1 Software Package for STSAFE-A sample applications (1.2.0), and thus can affect user-written code that was derived from a published sample application.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-01-01T00:00:00

Updated: 2024-09-09T17:21:45.294Z

Reserved: 2023-12-04T00:00:00

Link: CVE-2023-50096

cve-icon Vulnrichment

Updated: 2024-08-02T22:09:49.694Z

cve-icon NVD

Status : Modified

Published: 2024-01-01T18:15:09.197

Modified: 2024-09-09T18:35:04.350

Link: CVE-2023-50096

cve-icon Redhat

No data.