Ti Ti

  1. Vendors
  2. Ti

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Ti product.

RSS Feeds for Ti security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Ti products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Ti Sorted by Most Security Vulnerabilities since 2018

Ti Simplelink Cc32xx Software Development Kit9 vulnerabilities

Ti Simplelink Cc26xx Software Development Kit9 vulnerabilities

Ti Cc3100 Software Development Kit5 vulnerabilities

Ti Cc3200 Software Development Kit5 vulnerabilities

Ti Simplelink Msp432e4 Software Development Kit5 vulnerabilities

Ti Simplelink Cc13x0 Software Development Kit5 vulnerabilities

Ti Simplelink Cc13x2 Software Development Kit5 vulnerabilities

Ti Simplelink Msp432e411y4 vulnerabilities

Ti Simplelink Msp432e401y4 vulnerabilities

Ti Simplelink Cc13xx Software Development Kit4 vulnerabilities

Ti Z Stack1 vulnerability

Ti 15 4 Stack1 vulnerability

Ti Wilink8 Wifi Mcp81 vulnerability

Real Time Operating System1 vulnerability

Ti Openthread1 vulnerability

Ti Fusion Digital Power Designer1 vulnerability

Ti Easylink1 vulnerability

Dynamic Multi Protocal Manager1 vulnerability

Ti Code Composer Studio Intgrated Development Environment1 vulnerability

Ti Ble5 Stack1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Ti. Ti did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2026 0 0.00
2025 0 0.00
2024 1 5.50
2023 5 8.20
2022 0 0.00
2021 7 7.98

It may take a day or so for new Ti vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Ti Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2024-41629 Sep 12, 2024
Local Cred Disclosure via Plaintext Storage in TI Fusion DPD 7.10.1 An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to obtain sensitive information via the plaintext storage of credentials
Fusion Digital Power Designer
CVE-2021-27504 Nov 21, 2023
FreeRTOS malloc int overflow on TI devices, code exec Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'malloc' for FreeRTOS, resulting in code execution.
Simplelink Cc26xx Software Development Kit
Simplelink Cc13xx Software Development Kit
Simplelink Cc32xx Software Development Kit
And others...
CVE-2021-27502 Nov 21, 2023
TI-RTOS HeapMem Int Overflow in HeapMem_allocUnprotected Enables Code Exec Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
Simplelink Cc26xx Software Development Kit
Simplelink Cc13xx Software Development Kit
Simplelink Cc32xx Software Development Kit
And others...
CVE-2021-27429 Nov 20, 2023
TI-RTOS HeapTrack_alloc int overflow code exec Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values. This can trigger an integer overflow vulnerability in 'HeapTrack_alloc' and result in code execution.
Simplelink Cc26xx Software Development Kit
Simplelink Cc13xx Software Development Kit
Simplelink Cc32xx Software Development Kit
And others...
CVE-2021-22636 Nov 20, 2023
TI-RTOS HeapMem Integer Overflow allows Code Execution Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
Simplelink Cc26xx Software Development Kit
Simplelink Cc13xx Software Development Kit
Simplelink Cc32xx Software Development Kit
And others...
CVE-2023-29468 Aug 14, 2023
TI WiLink WL18xx MCP buffer overflow (8.5_SP3) enabling RCE The Texas Instruments (TI) WiLink WL18xx MCP driver does not limit the number of information elements (IEs) of type XCC_EXT_1_IE_ID or XCC_EXT_2_IE_ID that can be parsed in a management frame. Using a specially crafted frame, a buffer overflow can be triggered that can potentially lead to remote code execution. This affects WILINK8-WIFI-MCP8 version 8.5_SP3 and earlier.
Wilink8 Wifi Mcp8
CVE-2020-16630 Sep 20, 2021
TIs BLE stack caches and reuses the LTKs property for a bonded mobile TIs BLE stack caches and reuses the LTKs property for a bonded mobile. A LTK can be an unauthenticated-and-no-MITM-protection key created by Just Works or an authenticated-and-MITM-protection key created by Passkey Entry, Numeric Comparison or OOB. Assume that a victim mobile uses secure pairing to pair with a victim BLE device based on TI chips and generate an authenticated-and-MITM-protection LTK. If a fake mobile with the victim mobiles MAC address uses Just Works and pairs with the victim device, the generated LTK still has the property of authenticated-and-MITM-protection. Therefore, the fake mobile can access attributes with the authenticated read/write permission.
15 4 Stack
Ble5 Stack
Dynamic Multi Protocal Manager
And others...
CVE-2021-22677 May 07, 2021
An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).
Cc3100 Software Development Kit
Cc3200 Software Development Kit
Simplelink Cc13x0 Software Development Kit
And others...
CVE-2021-22673 May 07, 2021
The affected product is vulnerable to stack-based buffer overflow while processing over-the-air firmware updates from the CDN server, which may The affected product is vulnerable to stack-based buffer overflow while processing over-the-air firmware updates from the CDN server, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).
Cc3100 Software Development Kit
Cc3200 Software Development Kit
Simplelink Cc13x0 Software Development Kit
And others...
CVE-2021-22671 May 07, 2021
Multiple integer overflow issues exist while processing long domain names, which may Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).
Cc3100 Software Development Kit
Cc3200 Software Development Kit
Simplelink Cc13x0 Software Development Kit
And others...
CVE-2021-22679 May 07, 2021
The affected product is vulnerable to an integer overflow while processing HTTP headers, which may The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).
Cc3100 Software Development Kit
Cc3200 Software Development Kit
Simplelink Cc13x0 Software Development Kit
And others...
CVE-2021-22675 May 07, 2021
The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may allow an attacker to remotely execute code on SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior).
Cc3100 Software Development Kit
Cc3200 Software Development Kit
Simplelink Cc13x0 Software Development Kit
And others...
CVE-2021-3285 Jan 26, 2021
jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS. jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS.
Code Composer Studio Intgrated Development Environment
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.