CVE-2024-53025 Integer Overflow or Wraparound in BT Controller

Transient DOS can occur while processing UCI command...

CVE-2024-53025 Integer Overflow or Wraparound in BT Controller

Transient DOS can occur while processing UCI command...

CVE-2023-28587

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level...

Memory corruption

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level...

CVE-2023-28587 Improper Restriction of Operations within the Bounds of a Memory Buffer in BT Controller

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level...

CVE-2023-28587

CVE-2023-28587 describes a memory corruption issue in Qualcomm Chipsets’ Bluetooth (BT) controller, occurring when parsing debug commands with specific sub-opcodes at the HCI interface level. The underlying root cause is an improper handling of memory buffers, leading to memory corruption during ...

CVE-2023-2234

Union variant confusion allows any malicious BT controller to execute arbitrary code on the Zephyr host...

Design/Logic Flaw

Union variant confusion allows any malicious BT controller to execute arbitrary code on the Zephyr host...

CVE-2023-2234

The CVE-2023-2234 entry concerns Zephyr RTOS and a Bluetooth HCI host vulnerability described as “union variant confusion” that can let a malicious Bluetooth controller execute arbitrary code on the Zephyr host. Affected component is the Bluetooth HCI host handling union variant selection; the ro...

CVE-2023-2234 BT HCI host union variant confusion

Union variant confusion allows any malicious BT controller to execute arbitrary code on the Zephyr host...

CVE-2021-35129

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

Memory corruption

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

CVE-2021-35129

CVE-2021-35129 describes memory corruption in the Bluetooth (BT) controller caused by an improper length check when processing vendor-specific commands. Public details in connected sources indicate multiple Qualcomm Snapdragon products are affected, spanning Snapdragon Compute, Snapdragon Connect...

CVE-2021-35093

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore...

Memory corruption

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore...

CVE-2021-35093

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore...

CVE-2021-35093

CVE-2021-35093 affects the Qualcomm BlueCore Bluetooth stack — specifically the BT controller’s LMP handling on the 2-DH1 link. An oversized LMP packet can cause memory corruption, resulting in denial of service (availability impact). Documented impact: availability loss (CVE CVSS metrics indicat...