CVE-2021-40154

Publication date

2021-12-01 14:50:48

Family

mitre

State

PUBLISHED

Description

NXP LPC55S69 devices before A3 have a buffer over-read via a crafted wlength value in a GET Descriptor Configuration request during use of USB In-System Programming (ISP) mode. This discloses protected flash memory.