Описание
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
Ссылки
- Technical DescriptionThird Party Advisory
- Vendor Advisory
- Technical DescriptionThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Одновременно
Одновременно
EPSS
6.5 Medium
CVSS3
6.1 Medium
CVSS2
Дефекты
Связанные уязвимости
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB do ...
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
Уязвимость реализации Bluetooth Classic микропрограммного обеспечения устройств CC256xCQFN-EM, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.5 Medium
CVSS3
6.1 Medium
CVSS2