Описание
The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through 5.0.4 for DA14580/1/2/3 devices does not properly restrict the L2CAP payload length, allowing attackers in radio range to cause a buffer overflow via a crafted Link Layer packet.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.0.4 (включая)
Одновременно
cpe:2.3:a:dialog-semiconductor:software_development_kit:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:dialog-semiconductor:da14580:-:*:*:*:*:*:*:*
cpe:2.3:h:dialog-semiconductor:da14581:-:*:*:*:*:*:*:*
cpe:2.3:h:dialog-semiconductor:da14582:-:*:*:*:*:*:*:*
cpe:2.3:h:dialog-semiconductor:da14583:-:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00211
Низкий
5.7 Medium
CVSS3
6.1 Medium
CVSS2
Дефекты
CWE-120
Связанные уязвимости
github
больше 3 лет назад
The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through 5.0.4 for DA14580/1/2/3 devices does not properly restrict the L2CAP payload length, allowing attackers in radio range to cause a buffer overflow via a crafted Link Layer packet.
EPSS
Процентиль: 43%
0.00211
Низкий
5.7 Medium
CVSS3
6.1 Medium
CVSS2
Дефекты
CWE-120