An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability.
2022-02-16T17:15:10.353
2024-11-21T05:49:20.123
Modified
CVSSv3.1: 5.3 (MEDIUM)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | ti | simplelink_cc32xx_software_development_kit | < 5.30.00.08 | Yes |
| Hardware | ti | cc3120 | - | No |
| Hardware | ti | cc3130 | - | No |
| Hardware | ti | cc3135 | - | No |
| Hardware | ti | cc3220r | - | No |
| Hardware | ti | cc3220s | - | No |
| Hardware | ti | cc3220sf | - | No |
| Hardware | ti | cc3230s | - | No |
| Hardware | ti | cc3230sf | - | No |
| Hardware | ti | cc3235s | - | No |
| Hardware | ti | cc3235sf | - | No |
| Operating System | ti | cc3100_firmware | < 1.0.1.15-2.15.0.1 | Yes |
| Hardware | ti | cc3100 | - | No |
| Operating System | ti | cc3200_firmware | < 1.0.1.15-2.15.0.1 | Yes |
| Hardware | ti | cc3200 | - | No |