18 matches found
CVE-2025-53477 Apache Mynewt NimBLE: NULL Pointer Dereference in NimBLE host HCI layer
NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue...
EUVD-2023-24090
Malicious code in bioql PyPI...
EUVD-2023-24091
Malicious code in bioql PyPI...
CVE-2023-1902
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
Perfecting the Defense-in-Depth Strategy with Automation
Medieval castles stood as impregnable fortresses for centuries, thanks to their meticulous design. Fast forward to the digital age, and this medieval wisdom still echoes in cybersecurity. Like castles with strategic layouts to withstand attacks, the Defense-in-Depth strategy is the modern...
CVE-2023-1902
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1902
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1901
The bluetooth HCI host layer logic not clearing a global reference to a semaphore after synchronously sending HCI commands may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1901
The bluetooth HCI host layer logic not clearing a global reference to a semaphore after synchronously sending HCI commands may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
Null pointer dereference
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1901
The CVE concerns Zephyr's Bluetooth HCI host layer. The issue arises from not clearing a global reference to a semaphore after synchronously sending HCI commands, which may allow a malicious HCI Controller to reuse a dangling reference in the host layer. Reported impacts include DoS via a crash a...
CVE-2023-1901 HCI send_sync Dangling Semaphore Reference Re-use
The bluetooth HCI host layer logic not clearing a global reference to a semaphore after synchronously sending HCI commands may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1902 HCI Connection Creation Dangling State Reference Re-use
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1902 HCI Connection Creation Dangling State Reference Re-use
The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash DoS or potential RCE on the Host layer...
CVE-2023-1902
CVE-2023-1902 concerns Zephyr RTOS: the Bluetooth HCI host layer does not clear a global reference to a state pointer after processing connection events. This can let a malicious HCI Controller reuse a dangling reference in the host layer, causing a crash (DoS) or potential remote code execution....
Zephyr 缓冲区错误漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by the Zephyr Project. A security vulnerability exists in Zephyr 3.3 and earlier versions that stems from not clearing global references to semaphores after synchronously sending HCI commands, which could allow a malicious HCI...
PT-2023-4150 · Zephyr · Zephyr
Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue is related to the Bluetooth protocol implementation, specifically with the bluetooth HCI host layer logic not clearing a global reference to a semaphore after synchronously sending...
PT-2023-4151 · Zephyr · Zephyr
Name of the Vulnerable Software and Affected Versions: Zephyr affected versions not specified Description: The issue is related to a Bluetooth protocol implementation flaw in the Zephyr real-time operating system, involving the use of memory after it has been freed. This could allow a remote...