exploitDog

CVE-2021-35093

Опубликовано: 03 янв. 2022

Источник: nvd

CVSS3: 6.5

CVSS2: 3.3

EPSS Низкий

Описание

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore

Ссылки

https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin
Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:qualcomm:csr8510_a10_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csr8510_a10:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:qualcomm:csr8811_a12_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csr8811_a12:-:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00077

Низкий

6.5 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-rpvg-f3f8-67g6

github

около 4 лет назад

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore

EPSS

Процентиль: 23%

0.00077

Низкий

6.5 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-787