CVE-2023-4424

Summary

An malicious BLE device can cause buffer overflow by sending malformed advertising packet BLE device using Zephyr OS, leading to DoS or potential RCE on the victim BLE device.

Affected Software

VendorProductVersion RangeStatus
zephyrproject-rtosZephyr* < 3.5affected

Weaknesses

  • CWE-190: CWE-190 Integer Overflow or Wraparound

ADP Enrichment

CVE Program Container

Additional References

References