CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-17517

The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through 5.0.4 for DA14580/1/2/3 devices does not properly restrict the L2CAP payload length, allowing attackers in radio range to cause a buffer overflow via a crafted Link Layer packet.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.8%

CVSS Severity

CVSS v3 Score 5.7

CVSS v2 Score 6.1

References

Products affected by CVE-2019-17517

Dialog-Semiconductor » Software Development Kit » Version: 1.0.14.1081

cpe:2.3:a:dialog-semiconductor:software_development_kit:1.0.14.1081
Dialog-Semiconductor » Software Development Kit » Version: 5.0.4

cpe:2.3:a:dialog-semiconductor:software_development_kit:5.0.4
Dialog-Semiconductor » Da14580 » Version: N/A

cpe:2.3:h:dialog-semiconductor:da14580:-
Dialog-Semiconductor » Da14581 » Version: N/A

cpe:2.3:h:dialog-semiconductor:da14581:-
Dialog-Semiconductor » Da14582 » Version: N/A

cpe:2.3:h:dialog-semiconductor:da14582:-
Dialog-Semiconductor » Da14583 » Version: N/A

cpe:2.3:h:dialog-semiconductor:da14583:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-17517

Products

Pricing

Contact Us