7.5 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.9%
ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function mbed_krbs, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
github.com/ARMmbed/mbed-os/pull/14408
www.cisa.gov/uscert/ics/advisories/icsa-21-119-04