Zephyrproject: >> Zephyr >> 3.2.0 Security Vulnerabilities
A malicious / defective bluetooth controller can cause buffer overreads in the most functions that process HCI command responses.
CVSS Score
6.8
EPSS Score
0.001
Published
2023-01-25
Inconsistent handling of error cases in bluetooth hci may lead to a double free condition of a network buffer.
CVSS Score
9.8
EPSS Score
0.004
Published
2023-01-25
A malicious / defect bluetooth controller can cause a Denial of Service due to unchecked input in le_read_buffer_size_complete.
CVSS Score
9.6
EPSS Score
0.001
Published
2023-01-19
Page 6