Описание
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | not-affected | |
| esm-apps/jammy | needed | |
| esm-apps/noble | not-affected | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | needed | |
| kinetic | ignored | end of life, was needs-triage |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needs-triage |
Показывать по
EPSS
6.1 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB do ...
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
Уязвимость реализации Bluetooth Classic микропрограммного обеспечения устройств CC256xCQFN-EM, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.1 Medium
CVSS2
6.5 Medium
CVSS3