22 matches found
EUVD-2018-8122
Malware in sbrugna...
EUVD-2023-32528
Malicious code in bioql PyPI...
CVE-2023-28908 Integer Overflow in Non-Fragmented Data Reception
A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow when receiving non-fragmented HCI packets on a channel. The vulnerability was originally discovered in...
CVE-2024-48981
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet header by looking up the identifying first byte and matching it against a table of possible lengths. The initial parsing function, hciTrSerialRxIncoming does n...
CVE-2024-48985
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet data. A buffer is then allocated to contain the entire packet, the size of which is calculated as the length of the...
CVE-2024-48985
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet data. A buffer is then allocated to contain the entire packet, the size of which is calculated as the length of the...
CVE-2024-48981
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet header by looking up the identifying first byte and matching it against a table of possible lengths. The initial parsing function, hciTrSerialRxIncoming does n...
CVE-2024-48983
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet header. A buffer is then allocated to contain the entire packet, the size of which is calculated as the length of the...
CVE-2024-48985
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet data. A buffer is then allocated to contain the entire packet, the size of which is calculated as the length of the...
PT-2024-33314 · Arm · Mbed Os
Name of the Vulnerable Software and Affected Versions: MBed OS version 6.16.0 Description: An issue was discovered in the processing of HCI packets. The software dynamically determines the length of the packet data by reading 2 bytes from the packet data. A buffer is then allocated to contain the...
CVE-2024-48983
CVE-2024-48983 (MBed OS 6.16.0) describes a denial-of-service risk caused by an integer overflow during HCI packet length handling. The code computes packet size by reading two header bytes, allocates a buffer as body length plus header length, and then increments by sizeof(wsfMsg_t). This can pr...
CVE-2024-48981
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet header by looking up the identifying first byte and matching it against a table of possible lengths. The initial parsing function, hciTrSerialRxIncoming does n...
CVE-2024-48985
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet data. A buffer is then allocated to contain the entire packet, the size of which is calculated as the length of the...
CVE-2024-48981
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet header by looking up the identifying first byte and matching it against a table of possible lengths. The initial parsing function, hciTrSerialRxIncoming does n...
CVE-2024-48983
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet header. A buffer is then allocated to contain the entire packet, the size of which is calculated as the length of the...
PT-2024-33312 · Arm · Mbed Os
Name of the Vulnerable Software and Affected Versions: MBed OS version 6.16.0 Description: An issue was discovered in the processing of HCI packets, where the software dynamically determines the packet data length by reading 2 bytes from the packet header. A buffer is allocated based on this...
Illegal Address Access Vulnerability in Hcidump
Hcidump is a tool for capturing and analyzing hci packets and supports reading local hci traffic packets. Hcidump suffers from an illegal address access vulnerability. An attacker could exploit this vulnerability to cause the program to crash...
Hcidump suffers from a heap overflow vulnerability (CNVD-2020-62739)
Hcidump is a tool for capturing and analyzing hci packets and supports reading local hci traffic packets. Hcidump suffers from a heap overflow vulnerability. An attacker can exploit this vulnerability to cause the program to crash...
CVE-2018-16270
Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to dump Bluetooth HCI packets to an arbitrary file path...
Debian DSA-990-1 : bluez-hcidump - programming error
A denial of service condition has been discovered in bluez-hcidump, a utility that analyses Bluetooth HCI packets, which can be triggered remotely. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...