Vulnerability CVE-2021-27411
Published: 2022-05-03

Description:
Micrium OS Versions 5.10.1 and prior are vulnerable to integer wrap-around in functions Mem_DynPoolCreate, Mem_DynPoolCreateHW and Mem_PoolCreate. This unverified memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as very small blocks of memory being allocated instead of very large ones.

Type:

CWE-190

 (Integer Overflow or Wraparound)

 References:
https://www.silabs.com/developers/micrium-os
https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04
Copyright 2026, cxsecurity.com

 

Back to Top