📦

tencentos-tiny

Vendor: tencent

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 1.07% Exploit Prob.

Latest CVE CVE-2021-27439 May 03

Security Vulnerability Index

Page 1 / 1

7.3 CVSS

CVE-2021-27439

RCE

TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc incorrect calculation of effective memory allocation size. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.

EPSS: 1.07%

Severity: HIGH

May 03, 2022

Displaying 1 of 1 Total Entries

Total 1 Sections