First published: Tue Sep 07 2021(Updated: )
The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the reception of an oversized LMP packet greater than 17 bytes during the LMP auto rate procedure, allowing attackers in radio range to trigger a deadlock via a crafted LMP packet.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zh-jieli Ac6901 Firmware | ||
Zh-jieli Ac6901 | ||
Zh-jieli Ac690n Firmware | ||
Zh-jieli Ac690n | ||
Zh-jieli Ac692n Firmware | ||
Zh-jieli Ac692n | ||
Zh-jieli Ac6902 Firmware | ||
Zh-jieli Ac6902 | ||
Zh-jieli Ac6903 Firmware | ||
Zh-jieli Ac6903 | ||
Zh-jieli Ac6905 Firmware | ||
Zh-jieli Ac6905 | ||
Zh-jieli Ac6904 Firmware | ||
Zh-jieli Ac6904 | ||
Zh-jieli Ac6907 Firmware | ||
Zh-jieli Ac6907 | ||
Zh-jieli Ac6908 Firmware | ||
Zh-jieli Ac6908 | ||
Zh-jieli Ac6997 Firmware | ||
Zh-jieli Ac6997 | ||
Zh-jieli Ac6998 Firmware | ||
Zh-jieli Ac6998 | ||
Zh-jieli Ac6999 Firmware | ||
Zh-jieli Ac6999 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Bluetooth Classic vulnerability is CVE-2021-31612.
The severity of CVE-2021-31612 is medium, with a severity value of 6.5.
Zhuhai Jieli AC690X devices with certain firmware versions are affected by CVE-2021-31612.
Attackers in radio range can exploit CVE-2021-31612 by triggering a deadlock via a crafted LMP packet.
To fix CVE-2021-31612, users should contact the vendor for a firmware update.