Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices, when LE scan mode is used, allow remote attackers to trigger a buffer overflow via a malformed Bluetooth Low Energy advertising packet, to cause a denial of service or potentially execute arbitrary code. This affects CC256xC-BT-SP 1.2, CC256xB-BT-SP 1.8, and WL18xx-BT-SP 4.4.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Information
Published : 2019-11-13 08:15
Updated : 2020-08-18 13:15
NVD link : CVE-2019-15948
Mitre link : CVE-2019-15948
JSON object : View
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Products Affected
ti
- cc256xb-bt-sp_firmware
- cc256xc-bt-sp_firmware
- cc256xb-bt-sp
- cc256xc-bt-sp
- wl18xx-bt-sp_firmware
- wl18xx-bt-sp