CVE-2021-31613

The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle the reception of a truncated LMP packet during the LMP auto rate procedure, allowing attackers in radio range to immediately crash (and restart) a device via a crafted LMP packet.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zh-jieli:ac6901_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6901:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:zh-jieli:ac6925_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6925:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:zh-jieli:ac6926_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6926:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:zh-jieli:ac6928_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6928:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:zh-jieli:ac6921_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6921:-:*:*:*:*:*:*:*

History

09 Sep 2021, 22:55

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : 3.3
v3 : 6.5
CPE cpe:2.3:h:zh-jieli:ac6925:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6901:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6921:-:*:*:*:*:*:*:*
cpe:2.3:o:zh-jieli:ac6925_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:zh-jieli:ac6928_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6928:-:*:*:*:*:*:*:*
cpe:2.3:o:zh-jieli:ac6901_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:zh-jieli:ac6921_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zh-jieli:ac6926:-:*:*:*:*:*:*:*
cpe:2.3:o:zh-jieli:ac6926_firmware:-:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
References (MISC) https://dl.packetstormsecurity.net/papers/general/braktooth.pdf - (MISC) https://dl.packetstormsecurity.net/papers/general/braktooth.pdf - Technical Description, Third Party Advisory
References (MISC) http://www.zh-jieli.com/product/68-cn.html - (MISC) http://www.zh-jieli.com/product/68-cn.html - Product, Vendor Advisory
References (MISC) https://launchstudio.bluetooth.com/ListingDetails/58628 - (MISC) https://launchstudio.bluetooth.com/ListingDetails/58628 - Third Party Advisory
References (MISC) https://launchstudio.bluetooth.com/ListingDetails/19746 - (MISC) https://launchstudio.bluetooth.com/ListingDetails/19746 - Third Party Advisory

07 Sep 2021, 06:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-09-07 06:15

Updated : 2023-12-10 13:55


NVD link : CVE-2021-31613

Mitre link : CVE-2021-31613

CVE.ORG link : CVE-2021-31613


JSON object : View

Products Affected

zh-jieli

  • ac6925_firmware
  • ac6926
  • ac6921
  • ac6901_firmware
  • ac6925
  • ac6901
  • ac6926_firmware
  • ac6928
  • ac6921_firmware
  • ac6928_firmware