CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-34149

The Bluetooth Classic implementation on the Texas Instruments CC256XCQFN-EM does not properly handle the reception of continuous LMP_AU_Rand packets, allowing attackers in radio range to trigger a denial of service (deadlock) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 36.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 3.3

References

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
https://www.ti.com/product/CC2564C
https://www.ti.com/tool/CC256XC-BT-SP#primary-sw
https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
https://www.ti.com/product/CC2564C
https://www.ti.com/tool/CC256XC-BT-SP#primary-sw

Products affected by CVE-2021-34149

Ti » Cc256xcqfn-Em » Version: N/A

cpe:2.3:h:ti:cc256xcqfn-em:-
Ti » Cc256xcqfn-Em Firmware » Version: N/A

cpe:2.3:o:ti:cc256xcqfn-em_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34149

Products

Pricing

Contact Us