CVE-2021-22677

Name of the Vulnerable Software and Affected Versions SimpleLink Wi-Fi versions prior to MSP432E4 SDK: v4.20.00.12 SimpleLink Wi-Fi versions prior to CC32XX SDK: v4.30.00.06 SimpleLink Wi-Fi versions prior to CC13X0 SDK: v4.10.03 SimpleLink Wi-Fi versions prior to CC13X2 and CC26XX SDK: v4.40.00 SimpleLink Wi-Fi versions prior to CC3200 SDK: v1.5.0 SimpleLink Wi-Fi versions prior to CC3100 SDK: v1.3.0

Description An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network, which may lead to issues such as a denial-of-service condition or code execution.

Recommendations For versions prior to MSP432E4 SDK: v4.20.00.12, update to a version newer than v4.20.00.12. For versions prior to CC32XX SDK: v4.30.00.06, update to a version newer than v4.30.00.06. For versions prior to CC13X0 SDK: v4.10.03, update to a version newer than v4.10.03. For versions prior to CC13X2 and CC26XX SDK: v4.40.00, update to a version newer than v4.40.00. For versions prior to CC3200 SDK: v1.5.0, update to a version newer than v1.5.0. For versions prior to CC3100 SDK: v1.3.0, update to a version newer than v1.3.0.