Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after completion of the LMP setup procedure, allowing attackers in radio range to trigger a denial of service (firmware crash) via a crafted LMP packet.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cypress WICED BT输入验证错误漏洞
Vulnerability Description
Cypress WICED BT是cypress的一个全功能的平台。 Cypress WICED BT存在输入验证错误漏洞,该漏洞源于CYW20735B1 设备在 Cypress WICED BT 堆栈中通过 2.9.0 的蓝牙经典实现在 LMP 设置过程完成后无法正确处理接收具有更大 ACL 长度的 LMP_max_slot,从而允许无线电范围内的攻击者触发拒绝服务(固件崩溃)通过精心制作的 LMP 数据包。
CVSS Information
N/A
Vulnerability Type
N/A