David Atch

**Name of the Vulnerable Software and Affected Versions** MediaTek LinkIt SDK versions prior to 4.6.1 **Description** The issue is related to a possible memory corruption due to an integer overflow during mishandled memory allocation by `pvPortCalloc` and `pvPortRealloc`. This can lead to potential security risks. **Recommendations** For versions prior to 4.6.1, update to version 4.6.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of `pvPortCalloc` and `pvPortRealloc` functions until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Texas Instruments SimpleLink Wi-Fi versions prior to MSP432E4 SDK: v4.20.00.12 Texas Instruments SimpleLink Wi-Fi versions prior to CC32XX SDK v4.30.00.06 Texas Instruments SimpleLink Wi-Fi versions prior to CC13X0 SDK v4.10.03 Texas Instruments SimpleLink Wi-Fi versions prior to CC13X2 and CC26XX SDK v4.40.00 Texas Instruments SimpleLink Wi-Fi versions prior to CC3200 SDK v1.5.0 Texas Instruments SimpleLink Wi-Fi versions prior to CC3100 SDK v1.3.0 **Description** The issue is related to a stack-based buffer overflow that occurs when processing over-the-air firmware updates from the CDN server. This may allow an attacker to remotely execute code. **Recommendations** For versions prior to MSP432E4 SDK: v4.20.00.12, update to a version newer than v4.20.00.12. For versions prior to CC32XX SDK v4.30.00.06, update to a version newer than v4.30.00.06. For versions prior to CC13X0 SDK v4.10.03, update to a version newer than v4.10.03. For versions prior to CC13X2 and CC26XX SDK v4.40.00, update to a version newer than v4.40.00. For versions prior to CC3200 SDK v1.5.0, update to a version newer than v1.5.0. For versions prior to CC3100 SDK v1.3.0, update to a version newer than v1.3.0.

**Name of the Vulnerable Software and Affected Versions** Texas Instruments SimpleLink Wi-Fi versions prior to MSP432E4 SDK: v4.20.00.12 Texas Instruments SimpleLink Wi-Fi CC32XX SDK versions prior to v4.30.00.06 Texas Instruments SimpleLink Wi-Fi CC13X0 SDK versions prior to v4.10.03 Texas Instruments SimpleLink Wi-Fi CC13X2 and CC26XX SDK versions prior to v4.40.00 Texas Instruments SimpleLink Wi-Fi CC3200 SDK versions prior to v1.5.0 Texas Instruments SimpleLink Wi-Fi CC3100 SDK versions prior to v1.3.0 **Description** The issue arises from an integer overflow when parsing malformed over-the-air firmware update files, potentially allowing remote code execution. **Recommendations** For MSP432E4 SDK versions prior to v4.20.00.12, update to a version later than v4.20.00.12 to resolve the issue. For CC32XX SDK versions prior to v4.30.00.06, update to a version later than v4.30.00.06 to resolve the issue. For CC13X0 SDK versions prior to v4.10.03, update to a version later than v4.10.03 to resolve the issue. For CC13X2 and CC26XX SDK versions prior to v4.40.00, update to a version later than v4.40.00 to resolve the issue. For CC3200 SDK versions prior to v1.5.0, update to a version later than v1.5.0 to resolve the issue. For CC3100 SDK versions prior to v1.3.0, update to a version later than v1.3.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SimpleLink Wi-Fi versions prior to MSP432E4 SDK: v4.20.00.12 SimpleLink Wi-Fi versions prior to CC32XX SDK: v4.30.00.06 SimpleLink Wi-Fi versions prior to CC13X0 SDK: v4.10.03 SimpleLink Wi-Fi versions prior to CC13X2 and CC26XX SDK: v4.40.00 SimpleLink Wi-Fi versions prior to CC3200 SDK: v1.5.0 SimpleLink Wi-Fi versions prior to CC3100 SDK: v1.3.0 **Description** An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network, which may lead to issues such as a denial-of-service condition or code execution. **Recommendations** For versions prior to MSP432E4 SDK: v4.20.00.12, update to a version newer than v4.20.00.12. For versions prior to CC32XX SDK: v4.30.00.06, update to a version newer than v4.30.00.06. For versions prior to CC13X0 SDK: v4.10.03, update to a version newer than v4.10.03. For versions prior to CC13X2 and CC26XX SDK: v4.40.00, update to a version newer than v4.40.00. For versions prior to CC3200 SDK: v1.5.0, update to a version newer than v1.5.0. For versions prior to CC3100 SDK: v1.3.0, update to a version newer than v1.3.0.

**Name of the Vulnerable Software and Affected Versions** SimpleLink Wi-Fi (MSP432E4 SDK) versions v4.20.00.12 and prior SimpleLink Wi-Fi (CC32XX SDK) versions v4.30.00.06 and prior SimpleLink Wi-Fi (CC13X0 SDK) versions prior to v4.10.03 SimpleLink Wi-Fi (CC13X2 and CC26XX SDK) versions prior to v4.40.00 SimpleLink Wi-Fi (CC3200 SDK) versions v1.5.0 and prior SimpleLink Wi-Fi (CC3100 SDK) versions v1.3.0 and prior **Description** The issue is related to an integer overflow that occurs while processing HTTP headers. This may allow an attacker to remotely execute code. **Recommendations** For MSP432E4 SDK versions v4.20.00.12 and prior, update to a version later than v4.20.00.12. For CC32XX SDK versions v4.30.00.06 and prior, update to a version later than v4.30.00.06. For CC13X0 SDK versions prior to v4.10.03, update to version v4.10.03 or later. For CC13X2 and CC26XX SDK versions prior to v4.40.00, update to version v4.40.00 or later. For CC3200 SDK versions v1.5.0 and prior, update to a version later than v1.5.0. For CC3100 SDK versions v1.3.0 and prior, update to a version later than v1.3.0.

**Name of the Vulnerable Software and Affected Versions** SimpleLink Wi-Fi (MSP432E4 SDK) versions v4.20.00.12 and prior SimpleLink Wi-Fi (CC32XX SDK) versions v4.30.00.06 and prior SimpleLink Wi-Fi (CC13X0 SDK) versions prior to v4.10.03 SimpleLink Wi-Fi (CC13X2 and CC26XX SDK) versions prior to v4.40.00 SimpleLink Wi-Fi (CC3200 SDK) versions v1.5.0 and prior SimpleLink Wi-Fi (CC3100 SDK) versions v1.3.0 and prior **Description** The issue arises from multiple integer overflow problems when handling long domain names, potentially allowing remote code execution. **Recommendations** For MSP432E4 SDK versions v4.20.00.12 and prior, update to a version later than v4.20.00.12. For CC32XX SDK versions v4.30.00.06 and prior, update to a version later than v4.30.00.06. For CC13X0 SDK versions prior to v4.10.03, update to version v4.10.03 or later. For CC13X2 and CC26XX SDK versions prior to v4.40.00, update to version v4.40.00 or later. For CC3200 SDK versions v1.5.0 and prior, update to a version later than v1.5.0. For CC3100 SDK versions v1.3.0 and prior, update to a version later than v1.3.0.

**Name of the Vulnerable Software and Affected Versions** CODESYS Web Server versions 2.3 and prior **Description** An Arbitrary File Upload issue was discovered, allowing a specially crafted web server request to upload arbitrary files to the CODESYS Web Server without authorization, potentially enabling remote code execution. **Recommendations** For CODESYS Web Server versions 2.3 and prior, update to a version later than 2.3 to resolve the issue. As a temporary workaround, consider restricting access to the web server to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Rockwell Automation Allen-Bradley MicroLogix 1100 devices versions A through 15.000 and B before 15.002 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a crafted web request. **Recommendations** For versions A through 15.000, update to version 15.000 or later. For version B, update to version 15.002 or later. As a temporary workaround, consider restricting access to the web interface until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices (affected versions not specified) **Description** The issue is caused by a stack-based buffer overflow in the GoAhead Web Server, allowing remote attackers to execute arbitrary code via a long password in HTTP Basic Authentication data. This can be exploited by sending a long password, which can lead to the execution of arbitrary code. **Recommendations** For Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices, consider restricting access to the HTTP Basic Authentication feature until a fix is available. As a temporary workaround, consider limiting the length of passwords to prevent exploitation of the buffer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.