3 matches found
CVE-2021-28136
creationtimestamp| type| source ---|---|--- 2021-09-07 12:17:14+00:00| seen| https://t.me/cibsecurity/28317...
CVE-2021-28136
The CVE affects Espressif ESP-IDF 4.4 and earlier’s Bluetooth Classic stack. Root cause: ESP32’s handling of multiple LMP IO Capability Request packets during pairing allows a replayed/duplicated LMP packet to trigger memory corruption and a crash. Impact stated in sources: attacker in radio rang...
CVE-2021-28136
The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier does not properly handle the reception of multiple LMP IO Capability Request packets during the pairing process, allowing attackers in radio range to trigger memory corruption and consequently a crash in ESP32 via a replaye...