The Bluetooth Low Energy implementation in Cypress PSoC 4 BLE component 3.61 and earlier processes data channel frames with a payload length larger than the configured link layer maximum RX payload size, which allows attackers (in radio range) to cause a denial of service (crash) via a crafted BLE Link Layer frame.
References
Link | Resource |
---|---|
https://asset-group.github.io/disclosures/sweyntooth/ | Exploit Third Party Advisory |
https://community.cypress.com/thread/48573 | Vendor Advisory |
https://community.cypress.com/thread/53680 | Vendor Advisory |
https://www.youtube.com/watch?v=Iw8sIBLWE_w | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-02-12T17:59:37
Updated: 2020-04-13T14:59:37
Reserved: 2019-09-15T00:00:00
Link: CVE-2019-16336
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-02-12T18:15:10.393
Modified: 2022-01-01T19:51:57.407
Link: CVE-2019-16336
JSON object: View
Redhat Information
No data.
CWE