Unrated severityNVD Advisory· Published Aug 31, 2020· Updated Aug 4, 2024
CVE-2020-13595
CVE-2020-13595
Description
The Bluetooth Low Energy (BLE) controller implementation in Espressif ESP-IDF 4.0 through 4.2 (for ESP32 devices) returns the wrong number of completed BLE packets and triggers a reachable assertion on the host stack when receiving a packet with an MIC failure. An attacker within radio range can silently trigger the assertion (which disables the target's BLE stack) by sending a crafted sequence of BLE packets.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Espressif/ESP-IDFdescription
Patches
Vulnerability mechanics
References
2- asset-group.github.io/cves.htmlmitrex_refsource_MISC
- asset-group.github.io/disclosures/sweyntooth/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.