CVE-2019-17520

The Bluetooth Low Energy implementation on Texas Instruments SDK through 3.30.00.20 for CC2640R2 devices does not properly restrict the SM Public Key packet on reception, allowing attackers in radio range to cause a denial of service (crash) via crafted packets.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
VendorProductVersion
ticc2640r2_software_development_kit
𝑥
≤ 3.30.00.20
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ti.com/tool/LAUNCHXL-CC2640R2
https://asset-group.github.io/disclosures/sweyntooth/
https://www.youtube.com/watch?v=Iw8sIBLWE_w
http://www.ti.com/tool/LAUNCHXL-CC2640R2
https://asset-group.github.io/disclosures/sweyntooth/
https://www.youtube.com/watch?v=Iw8sIBLWE_w