Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TencentOS-tiny Integer Overflow or Wraparound
Vulnerability Description
TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc incorrect calculation of effective memory allocation size. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
Tencent OS-tiny 输入验证错误漏洞
Vulnerability Description
Tencent OS-tiny是中国腾讯(Tencent)公司的一款面向物联网领域开发的实时操作系统。具有低功耗,低资源占用,模块化,安全可靠等特点,可有效提升物联网终端产品开发效率。 Tencent OS-tiny 3.1.0 版本存在输入验证错误漏洞,该漏洞源于不正确的内存分配可能导致任意的内存分配,从而导致意外的行为,如崩溃或远程代码注入执行。
CVSS Information
N/A
Vulnerability Type
N/A