The vulnerability of the Bluetooth Low Energy (BLE) technology in tool sets and libraries for setting up wireless connections provided by Cypress’ Bluetooth SDK allows a intruder to trigger a service failure.

The vulnerability of the Bluetooth Low Energy BLE technology, as well as the toolkits and libraries for configuring wireless connections in Cypress’ Bluetooth SDK, is related to the issue where an operation goes beyond the buffer boundaries in memory when processing the Length field of the Data...

PT-2024-7671 · Cypress · Cypress Bluetooth Sdk

Name of the Vulnerable Software and Affected Versions: Cypress Bluetooth SDK version 3.66 Description: The issue is related to a buffer overflow in the memory when handling the data header length field of the LL Pause Enc Req, which is part of the Bluetooth Low Energy BLE technology. This can be...