9 matches found
CVE-2024-3077
An malicious BLE device can crash BLE victim device by sending malformed gatt packet...
CVE-2023-21647
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation...
CVE-2024-3077
An malicious BLE device can crash BLE victim device by sending malformed gatt packet...
CVE-2024-3077
An malicious BLE device can crash BLE victim device by sending malformed gatt packet...
CVE-2024-3077
CVE-2024-3077 concerns Zephyr RTOS Bluetooth BLE: a vulnerability in GATT handling that can cause a victim BLE device to crash when receiving malformed GATT packets. The CVE description points to an integer underflow in gatt_find_info_rsp as the underlying issue. Affected software is Zephyr RTOS ...
PT-2024-23613 · Unknown · Zephyr Rtos
Name of the Vulnerable Software and Affected Versions: Zephyr RTOS versions prior to 3.6 Description: The issue allows a malicious BLE device to crash a BLE victim device by sending a malformed gatt packet. This can be exploited for local attacks. Network segmentation can help mitigate the risk...
CVE-2023-21647 Improper Input Validation in Bluetooth HOST
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation...
CVE-2023-21647
CVE-2023-21647 involves information disclosure in Bluetooth when a GATT packet is received due to improper input validation. The issue is described across multiple sources as a Bluetooth HOST vulnerability (Qualcomm closed-source component) with CVSS v3.1 base score 6.5 (Network, Low complexity, ...
PT-2023-18310 · Bluetooth · Bluetooth
Name of the Vulnerable Software and Affected Versions: Bluetooth affected versions not specified Description: The issue is related to information disclosure in Bluetooth when a GATT packet is received. This occurs due to improper input validation. Recommendations: At the moment, there is no...