CVE-2023-5753

Summary

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hci_core.c

Affected Software

VendorProductVersion RangeStatus
zephyrproject-rtosZephyr* < 3.5affected

Weaknesses

  • CWE-120: CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
  • CWE-191: CWE-191 Integer Underflow (Wrap or Wraparound)

ADP Enrichment

CVE Program Container

Additional References

References