CVE-2022-26528
6.5
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the length of segmented packets’ shift parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Realtek | Linux/Android Bluetooth Mesh SDK | unspecified <= 4.17-4.17-20220127 | affected |
Weaknesses
- CWE-120: CWE-120 Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.