Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow
Vulnerability Description
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the length of segmented packets’ shift parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
Vulnerability Title
Realtek Linux/Android Bluetooth Mesh SDK 安全漏洞
Vulnerability Description
Realtek Linux/Android Bluetooth Mesh SDK是中国瑞昱半导体(Realtek)公司的一个蓝牙网状网络软件开发套件。 Realtek Linux/Android Bluetooth Mesh SDK v4.18-4.18-20220218 之前版本存在安全漏洞,该漏洞源于对分段数据包的参考参数的长度验证不足,存在缓冲区溢出漏洞,邻近网络中未经认证的攻击者可利用此漏洞造成缓冲区溢出并破坏服务。
CVSS Information
N/A
Vulnerability Type
N/A