CVE-2025-63895

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

EUVD-2025-202589

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

CVE-2025-63895

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

CVE-2025-63895

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

CVE-2025-63895

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

CVE-2025-63895

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

PT-2025-50488

Name of the Vulnerable Software and Affected Versions JXL 9 Inch Car Android Double Din Player version 12.0 Description An issue in the Bluetooth firmware allows attackers to cause a Denial of Service DoS by sending a crafted Link Manager Protocol LMP packet. A crafted LMP packet is a specific ty...

CVE-2025-63895

The CVE-2025-63895 issue affects the JXL 9 Inch Car Android Double Din Player (Android v12.0) with Bluetooth Classic stack. A flaw in the Bluetooth firmware’s LMP handling (LMP implementation) can be exploited by an attacker in Bluetooth range to trigger a denial-of-service during connection setu...

Linux Distros Unpatched Vulnerability : CVE-2021-34148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot wit...

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. A security vulnerability exists in qualcomm products that stems from...

DEBIAN-CVE-2021-34145

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot with an invalid Baseband packet type and LTADDRESS and LTADDR after completion of the LMP setup procedure, allowing attackers in radio range...

UBUNTU-CVE-2021-34146

The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart crash of the device by flooding it with LMPAURand packets after the pagi...

Espressif ESP-IDF 代码注入漏洞

Espressif ESP-IDF is an Internet of Things IoT development framework from China's Loxin Information Technology Espressif. A code injection vulnerability exists in the Espressif ESP-IDF that stems from the Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier versions not properly...

Zhuhai Jieli AC690X输入验证错误漏洞

The Zhuhai Jieli AC690X is a Bluetooth chip. The Zhuhai Jieli AC690X suffers from an input validation error vulnerability that arises from the Bluetooth Classic implementation in the Zhuhai Jieli AC6366CDEMOV1.0 that does not correctly handle the reception of consecutively provided unsolicited LM...

AB32VG1 安全漏洞

The AB32VG1 is a chip from ZTE Bluetooth. A security vulnerability exists in the AB32VG1, which stems from the Bluetooth Classic implementation on the AB32VG1 device not properly handling the reception of successive unsolicited LMP responses, allowing an attacker within radio range to trigger a...

Actions ATS2815输入验证错误漏洞

The Actions ATS2815 is a Bluetooth chip from Actions. The Actions ATS2815 suffers from an Input Authentication Error vulnerability that stems from the Bluetooth Classic implementation on the Actions ATS2815 and ATS2819 chipsets failing to correctly handle the receipt of LMPhostconnectionreq...

JBL TUNE500BT输入验证错误漏洞

The JBL TUNE500BT is a Bluetooth headset from harman. The JBL TUNE500BT suffers from an input validation error vulnerability that stems from the Bluetooth Classic implementation on the JBL TUNE500BT device failing to properly handle the reception of successive unsolicited LMP responses, allowing ...

Zhuhai Jieli AC690X 安全漏洞

The Zhuhai Jieli AC690X is a Bluetooth chip. A security vulnerability exists in the Zhuhai Jieli AC690X that arises from the Bluetooth Classic implementation on Zhuhai Jieli AC690X devices not properly handling the reception of very large LMP packets greater than 17 bytes during LMP auto-rate,...

Zhuhai Jieli AC690X输入验证错误漏洞

The Zhuhai Jieli AC690X is a Bluetooth chip. The Zhuhai Jieli AC690X suffers from an input validation error vulnerability that stems from the Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices failing to properly handle a garbled LMP setup program followed by a misformatte...

CVE-2018-19860

Broadcom firmware before summer 2014 on Nexus 5 BCM4335C0 2012-12-11, Raspberry Pi 3 BCM43438A1 2014-06-02, and unspecifed other devices does not properly restrict LMP commnds and executes certain memory contents upon receiving an LMP command, as demonstrated by executing an HCI command...