What software is affected by CVE-2019-19193?

Texas Instruments SIMPLELINK-CC2640R2-SDK through version 3.30.00.20 and BLE-STACK through version 1.5.0 before Q4 2019 for CC2640R2 and CC2540/1 devices are affected.

What is the severity of CVE-2019-19193?

CVE-2019-19193 has a severity rating of 6.5, which is considered medium.

How can attackers exploit CVE-2019-19193?

Attackers can exploit CVE-2019-19193 by sending a malicious advertisement connection request packet, bypassing security restrictions.

Is there a fix for CVE-2019-19193?

To fix CVE-2019-19193, it is recommended to update the affected software to versions beyond the vulnerable ones mentioned.

Vulnerability/
CVE-2019-19193

medium

6.5

10/2/2020

5/8/2024

CVE-2019-19193

Q: What is CVE-2019-19193?

CVE-2019-19193 is a vulnerability in the Bluetooth Low Energy peripheral implementation on Texas Instruments SIMPLELINK-CC2640R2-SDK and BLE-STACK, allowing attackers to bypass security restrictions.

First published: Mon Feb 10 2020(Updated: )

The Bluetooth Low Energy peripheral implementation on Texas Instruments SIMPLELINK-CC2640R2-SDK through 3.30.00.20 and BLE-STACK through 1.5.0 before Q4 2019 for CC2640R2 and CC2540/1 devices does not properly restrict the advertisement connection request packet on reception, allowing attackers in radio range to cause a denial of service (crash) via a crafted packet.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Ti Ble-stack	<=1.5.0
Ti Cc2640r2 Software Development Kit	<=3.30.00.20
Ti Cc2540\/1	<q4_2019
Ti Cc2640r2	<q4_2019

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2019-19193?
CVE-2019-19193 is a vulnerability in the Bluetooth Low Energy peripheral implementation on Texas Instruments SIMPLELINK-CC2640R2-SDK and BLE-STACK, allowing attackers to bypass security restrictions.
What software is affected by CVE-2019-19193?
Texas Instruments SIMPLELINK-CC2640R2-SDK through version 3.30.00.20 and BLE-STACK through version 1.5.0 before Q4 2019 for CC2640R2 and CC2540/1 devices are affected.
What is the severity of CVE-2019-19193?
CVE-2019-19193 has a severity rating of 6.5, which is considered medium.
How can attackers exploit CVE-2019-19193?
Attackers can exploit CVE-2019-19193 by sending a malicious advertisement connection request packet, bypassing security restrictions.
Is there a fix for CVE-2019-19193?
To fix CVE-2019-19193, it is recommended to update the affected software to versions beyond the vulnerable ones mentioned.

collector/nvd-index
agent/author
agent/severity
agent/references
agent/type
agent/tags
agent/description
agent/event
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
collector/mitre-cve
source/MITRE
vendor/ti
canonical/ti ble-stack
version/ti ble-stack/1.5.0
canonical/ti cc2640r2 software development kit
version/ti cc2640r2 software development kit/3.30.00.20
canonical/ti cc2540\/1
canonical/ti cc2640r2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.