CVE-2021-31611
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
07/09/2021
Last modified:
03/05/2022
Description
The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle an out-of-order LMP Setup procedure that is followed by a malformed LMP packet, allowing attackers in radio range to deadlock a device via a crafted LMP packet. The user needs to manually reboot the device to restore communication.
Impact
Base Score 3.x
5.70
Severity 3.x
MEDIUM
Base Score 2.0
3.30
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:zh-jieli:ac6901_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:zh-jieli:ac6901:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:zh-jieli:ac6925_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:zh-jieli:ac6925:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:zh-jieli:ac6926_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:zh-jieli:ac6926:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:zh-jieli:ac6928_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:zh-jieli:ac6928:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:zh-jieli:ac6921_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:zh-jieli:ac6921:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page