Cypress WICED BT 输入验证错误漏洞

🗓️ 03 Sep 2021 00:00:00Reported by China National Vulnerability Database of Information SecurityType

cnnvd

cnnvd🔗 www.cnnvd.org.cn👁 2 Views

Input validation error in Cypress Wiced Bluetooth can exhaust resources and crash devices via crafted timing responses and random reconnections.

Reporter	Title	Published	Views	Family All 16
BDU FSTEC	The vulnerability of the Cypress WICED BT Bluetooth Classic stack implementation for the CYW20735B1 device arises due to insufficient validation of input data. This allows a malicious actor to trigger a service failure.	8 Oct 202100:00	–	bdu_fstec
Circl	CVE-2021-34147	7 Sep 202112:17	–	circl
CVE	CVE-2021-34147	7 Sep 202106:26	–	cve
Cvelist	CVE-2021-34147	7 Sep 202106:26	–	cvelist
Debian CVE	CVE-2021-34147	7 Sep 202106:26	–	debiancve
EUVD	EUVD-2021-20809	7 Oct 202500:30	–	euvd
Hewlett-Packard	Qualcomm and Mediatek Wireless Bluetooth April 2022 Security Updates	14 Apr 202200:00	–	hp
NVD	CVE-2021-34147	7 Sep 202107:15	–	nvd
OSV	DEBIAN-CVE-2021-34147	7 Sep 202107:15	–	osv
OSV	UBUNTU-CVE-2021-34147	7 Sep 202107:15	–	osv

Source	Link
cypress	www.cypress.com/documentation/datasheets/cyw20735b1-single-chip-bluetooth-transceiver-wireless-input-devices
dl	www.dl.packetstormsecurity.net/papers/general/braktooth.pdf
packetstormsecurity	www.packetstormsecurity.com/files/164037/BRAKTOOTH-Causing-Havoc-On-Bluetooth-Link-Manager.html
vigilance	www.vigilance.fr/vulnerability/Bluetooth-Implementations-multiple-vulnerabilities-via-Braktooth-36316
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-34147
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2021090613

23 May 2026 00:00Current

6.4Medium risk

Vulners AI Score6.4

CVSS 26.1

CVSS 3.16.5

EPSS0.00101

Cypress Wiced Bluetooth Input validation error Bluetooth classic Timing accuracy response Resource exhaustion Device crash Reconnection attack Random device address