Unrated severityOSV Advisory· Published Jan 10, 2026· Updated Jan 12, 2026

Apache Mynewt NimBLE: NULL Pointer Dereference in NimBLE host HCI layer

CVE-2025-53477

Description

NULL Pointer Dereference vulnerability in Apache Nimble.

Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low.

This issue affects Apache NimBLE: through 1.8.0.

Users are recommended to upgrade to version 1.9.0, which fixes the issue.

Affected products

Apache/Mynewt NimbleOSV
Range: nimble_1_5_0_rc1_tag, nimble_1_5_0_tag, nimble_1_6_0_rc1_tag, …

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/apache/mynewt-nimble/commit/0caf9baeb271ede85fcc5237ab87ddbf938600damitrepatch
github.com/apache/mynewt-nimble/commit/3160b8c4c7ff8db4e0f9badcdf7df684b151e077mitrepatch
lists.apache.org/thread/1dxthc132hwm2tzvjblrtnschcsbw2vomitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000