CVE-2019-17520

Published: Feb 10, 2020Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

The Bluetooth Low Energy implementation on Texas Instruments SDK through 3.30.00.20 for CC2640R2 devices does not properly restrict the SM Public Key packet on reception, allowing attackers in radio range to cause a denial of service (crash) via crafted packets.

Affected (1)

Products: Ti: Cc2640r2 Software Development Kit

1 product

Cc2640r2 Software Development Kit

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ti Cc2640r2 Software Development Kit	Up to 3.30.00.20

Running on/with	Platform Versions
Ti Cc2640r2	All versions

Related CWEs

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (6)

http://www.ti.com/tool/LAUNCHXL-CC2640R2

Source: cve@mitre.org

ProductVendor Advisory

https://asset-group.github.io/disclosures/sweyntooth/

Source: cve@mitre.org

Third Party Advisory

https://www.youtube.com/watch?v=Iw8sIBLWE_w

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.ti.com/tool/LAUNCHXL-CC2640R2

Source: af854a3a-2127-422b-91ae-364da2661108

ProductVendor Advisory

https://asset-group.github.io/disclosures/sweyntooth/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.youtube.com/watch?v=Iw8sIBLWE_w

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.