CVE-2021-31612

EUVD-2021-18501
The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the reception of an oversized LMP packet greater than 17 bytes during the LMP auto rate procedure, allowing attackers in radio range to trigger a deadlock via a crafted LMP packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 33%
Affected Products (NVD)
VendorProductVersion
zh-jieliac6901_firmware
-
zh-jieliac690n_firmware
-
zh-jieliac692n_firmware
-
zh-jieliac6902_firmware
-
zh-jieliac6903_firmware
-
zh-jieliac6905_firmware
-
zh-jieliac6904_firmware
-
zh-jieliac6907_firmware
-
zh-jieliac6908_firmware
-
zh-jieliac6997_firmware
-
zh-jieliac6998_firmware
-
zh-jieliac6999_firmware
-
𝑥
= Vulnerable software versions
References
http://www.zh-jieli.com/product/68-cn.html
https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
https://launchstudio.bluetooth.com/ListingDetails/19746
http://www.zh-jieli.com/product/68-cn.html
https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
https://launchstudio.bluetooth.com/ListingDetails/19746