Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for segmented packets’ link parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service.
2022-08-30T05:15:07.907
2024-11-21T06:54:07.213
Modified
CVSSv3.1: 6.5 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | realtek | bluetooth_mesh_software_development_kit | ≤ 4.17-4.17-20220127 | Yes |
| Operating System | android | - | No | |
| Operating System | linux | linux_kernel | - | No |