CVE-2021-31612 | Severity.io

Description

The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the reception of an oversized LMP packet greater than 17 bytes during the LMP auto rate procedure, allowing attackers in radio range to trigger a deadlock via a crafted LMP packet.

Related CPE's

ac6901_firmware

Vulnerable

ac690n_firmware

Vulnerable

ac692n_firmware

Vulnerable

ac6902_firmware

Vulnerable

ac6903_firmware

Vulnerable

ac6905_firmware

Vulnerable

ac6904_firmware

Vulnerable

ac6907_firmware

Vulnerable

ac6908_firmware

Vulnerable

ac6997_firmware

Vulnerable

ac6998_firmware

Vulnerable

ac6999_firmware

Vulnerable

References

http://www.zh-jieli.com/product/68-cn.html

ProductVendor Advisory

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

Broken Link

https://launchstudio.bluetooth.com/ListingDetails/19746

Third Party Advisory

Weaknesses

[email protected]

Primary

NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.5 · Medium

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-09-07T07:15:07.093

3 years ago

Last modified

2021-09-15T00:02:27.800

3 years ago