CVE-2021-31787

Published: Nov 30, 2021Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMP_features_res packets.

Affected (5)

Products: Actions Semi: Ats2819p Firmware, Ats2815 Firmware, Ats2819 Firmware, Ats2819s Firmware, Ats2819t Firmware

5 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Actions Semi Ats2819p Firmware	All versions

Running on/with	Platform Versions
Actions Semi Ats2819p	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Actions Semi Ats2815 Firmware	All versions

Running on/with	Platform Versions
Actions Semi Ats2815	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Actions Semi Ats2819 Firmware	All versions

Running on/with	Platform Versions
Actions Semi Ats2819	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Actions Semi Ats2819s Firmware	All versions

Running on/with	Platform Versions
Actions Semi Ats2819s	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Actions Semi Ats2819t Firmware	All versions

Running on/with	Platform Versions
Actions Semi Ats2819t	All versions

Related CWEs

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (6)

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

Source: cve@mitre.org

Broken Link

https://launchstudio.bluetooth.com/ListingDetails/76427

Source: cve@mitre.org

Third Party Advisory

https://www.actions-semi.com/index.php?id=3581&siteId=4

Source: cve@mitre.org

Vendor Advisory

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://launchstudio.bluetooth.com/ListingDetails/76427

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.actions-semi.com/index.php?id=3581&siteId=4

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.