Security Advisory

CVE-2021-21966

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-16 16:38:32
Last updated 2024-08-03 18:30:23
Assigner talos
State PUBLISHED

Description

An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of Texas Instruments CC3200 SimpleLink Solution NWP 2.9.0.0. A specially-crafted HTTP request can lead to an uninitialized read. An attacker can send an HTTP request to trigger this vulnerability.