Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Bluetooth: Out-Of-Context le_conn_rsp Handling
Vulnerability Description
The function responsible for handling BLE connection responses does not verify whether a response is expected—that is, whether the device has initiated a connection request. Instead, it relies solely on identifier matching.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
不恰当实现的标准安全检查
Vulnerability Title
Zephyr 安全漏洞
Vulnerability Description
Zephyr是Zephyr开源的一个可扩展的实时操作系统 (RTOS)。 Zephyr存在安全漏洞,该漏洞源于BLE连接响应处理函数未验证响应是否预期,仅依赖标识符匹配。
CVSS Information
N/A
Vulnerability Type
N/A