Unrated severityNVD Advisory· Published Sep 7, 2021· Updated Aug 4, 2024
CVE-2021-34146
CVE-2021-34146
Description
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.
Affected products
2- Cypress/CYW920735Q60EVBdescription
Patches
Vulnerability mechanics
References
2- dl.packetstormsecurity.net/papers/general/braktooth.pdfmitrex_refsource_MISC
- www.cypress.com/documentation/datasheets/cyw20735b1-single-chip-bluetooth-transceiver-wireless-input-devicesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.