Lucene search
K

6 matches found

CVE
CVE
added 6 days ago13 views

CVE-2026-9263

The CVE-2026-9263 issue affects Zephyr’s ISO Adaptation Layer (ISOAL) in the Bluetooth controller. The root cause is that framed ISO PDU start segments (sc=0) with len len - 3 to underflow when len is 0–2. This produced an oversized length (up to 253–255) that was passed to isoal_rx_append_to_sdu...

8.1CVSS6AI score0.00172EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2026/06/23 1:16 a.m.3 views

UBUNTU-CVE-2026-10658

A missing length validation in the Zephyr Bluetooth Host ISO receive path can be triggered by malformed HCI ISO data. In btisorecv subsys/bluetooth/host/iso.c, when processing PB=START/SINGLE fragments, the code pulls a TS SDU header 8 bytes, ts=1 or a non-TS SDU header 4 bytes, ts=0 without firs...

7.1CVSS5.9AI score0.0017EPSS
Exploits0References3
CVE
CVE
added 2026/06/22 11:58 p.m.19 views

CVE-2026-10658

CVE-2026-10658 affects Zephyr’s Bluetooth Host ISO RX path, specifically bt_iso_recv() in subsys/bluetooth/host/iso.c. The vulnerability arises from missing minimum length checks for SDU headers when processing PB=START/SINGLE, allowing a malformed HCI ISO payload to bypass the inner header lengt...

7.1CVSS5.9AI score0.0017EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.3 views

SUSE CVE-2021-39926

Buffer overflow in the Bluetooth HCIISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file...

4.3CVSS7.9AI score0.07502EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2022/01/19 8:0 a.m.5 views

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

...

7.5CVSS6.9AI score0.07502EPSS
Exploits1
OSV
OSV
added 2021/11/19 5:15 p.m.8 views

AZL-7414 CVE-2021-39926 affecting package wireshark for versions less than 3.4.14-1

Buffer overflow in the Bluetooth HCIISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file...

7.5CVSS7AI score0.07502EPSS
Exploits1References1
Rows per page
Query Builder