CVE-2021-34150

EUVD-2021-20812

07.09.2021, 06:15

The Bluetooth Classic implementation on Bluetrum AB5301A devices with unknown firmware versions does not properly handle the reception of oversized DM1 LMP packets while no other BT connections are active, allowing attackers in radio range to prevent new BT connections (disabling the AB5301A inquiry and page scan procedures) via a crafted LMP packet. The user needs to manually perform a power cycle (restart) of the device to restore BT connectivity.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	ADJACENT_NETWORK	LOW	NONE	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 32%

Affected Products (NVD)

Vendor	Product	Version
bluetrum	ab5301a_firmware	-

𝑥

= Vulnerable software versions

References

http://www.bluetrum.com/product/ab5301a.html

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

http://www.bluetrum.com/product/ab5301a.html

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf