Vulnerability Details CVE-2021-31610
The Bluetooth Classic implementation on AB32VG1 devices does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service (either restart or deadlock the device) by flooding a device with LMP_AU_rand data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.9%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.1
References
- http://www.bluetrum.com/product/ab5376t.html
- http://www.bluetrum.com/product/bt8896a.html
- https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
- https://www.mi.com/global/mi-true-wireless-earbuds-basic-2/
- http://www.bluetrum.com/product/ab5376t.html
- http://www.bluetrum.com/product/bt8896a.html
- https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
- https://www.mi.com/global/mi-true-wireless-earbuds-basic-2/
Products affected by CVE-2021-31610
-
cpe:2.3:h:bluetrum:ab5376t:-
-
cpe:2.3:h:bluetrum:bt8896a:-
-
cpe:2.3:h:mi:mi_true_wireless_earbuds_basic_2:-
-
cpe:2.3:o:bluetrum:ab5376t_firmware:-
-
cpe:2.3:o:bluetrum:bt8896a_firmware:-
-
cpe:2.3:o:mi:mi_true_wireless_earbuds_basic_2_firmware:-