This page lists publicly disclosed CVE vulnerabilities affecting st stm32cube_middleware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-34268 | An issue in the USBH_ParseDevDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) via a malformed USB device packet. | [email protected] | 4.6 | 0.05% | 2021-07-22 | 2024-11-21 |
| CVE-2021-34267 | An in the USBH_MSC_InterfaceInit() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service (DOS) when the system tries to communicate with the connected endpoint. | [email protected] | 4.6 | 0.05% | 2021-07-22 | 2024-11-21 |
| CVE-2021-34262 | A buffer overflow vulnerability in the USBH_ParseEPDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code. | [email protected] | 6.8 | 0.08% | 2021-07-22 | 2024-11-21 |
| CVE-2021-34261 | An issue in USBH_ParseCfgDesc() of STMicroelectronics STM32Cube Middleware v1.8.0 and below causes a denial of service due to the system hanging when trying to set a remote wake-up feature. | [email protected] | 4.6 | 0.05% | 2021-07-22 | 2024-11-21 |
| CVE-2021-34260 | A buffer overflow vulnerability in the USBH_ParseInterfaceDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code. | [email protected] | 6.8 | 0.08% | 2021-07-22 | 2024-11-21 |
| CVE-2021-34259 | A buffer overflow vulnerability in the USBH_ParseCfgDesc() function of STMicroelectronics STM32Cube Middleware v1.8.0 and below allows attackers to execute arbitrary code. | [email protected] | 6.8 | 0.08% | 2021-07-22 | 2024-11-21 |