CVE List


Moderate 6.5

BT: Possible to overwrite an existing bond during keys distribution phase when the identity address of the bond is known. Zephyr versions >= 1.14.2, >= 2.4.0, >= 2.5.0 contain Use of Multiple Resources with Duplicate Identifier (CWE-694). For more information, see

Published October 5, 2021.

Affected software

Reference links

Sign Up for Alerts