CVE-2019-15948

Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices, when LE scan mode is used, allow remote attackers to trigger a buffer overflow via a malformed Bluetooth Low Energy advertising packet, to cause a denial of service or potentially execute arbitrary code. This affects CC256xC-BT-SP 1.2, CC256xB-BT-SP 1.8, and WL18xx-BT-SP 4.4.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ti:cc256xc-bt-sp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ti:cc256xc-bt-sp:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:ti:cc256xb-bt-sp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ti:cc256xb-bt-sp:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:ti:wl18xx-bt-sp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ti:wl18xx-bt-sp:-:*:*:*:*:*:*:*

Information

Published : 2019-11-13 08:15

Updated : 2020-08-18 13:15


NVD link : CVE-2019-15948

Mitre link : CVE-2019-15948


JSON object : View

CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Advertisement

dedicated server usa

Products Affected

ti

  • cc256xb-bt-sp_firmware
  • cc256xc-bt-sp_firmware
  • cc256xb-bt-sp
  • cc256xc-bt-sp
  • wl18xx-bt-sp_firmware
  • wl18xx-bt-sp