CVE-2021-34150

Published: Sep 7, 2021Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

The Bluetooth Classic implementation on Bluetrum AB5301A devices with unknown firmware versions does not properly handle the reception of oversized DM1 LMP packets while no other BT connections are active, allowing attackers in radio range to prevent new BT connections (disabling the AB5301A inquiry and page scan procedures) via a crafted LMP packet. The user needs to manually perform a power cycle (restart) of the device to restore BT connectivity.

Affected (1)

Products: Bluetrum: Ab5301a Firmware

1 product

Ab5301a Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bluetrum Ab5301a Firmware	All versions

Running on/with	Platform Versions
Bluetrum Ab5301a	All versions

References (4)

http://www.bluetrum.com/product/ab5301a.html

Source: cve@mitre.org

ProductVendor Advisory

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

Source: cve@mitre.org

Technical DescriptionThird Party Advisory

http://www.bluetrum.com/product/ab5301a.html

Source: af854a3a-2127-422b-91ae-364da2661108

ProductVendor Advisory

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Technical DescriptionThird Party Advisory

Timeline

No history available yet.