The Bluetooth Low Energy peripheral implementation on Texas Instruments SIMPLELINK-CC2640R2-SDK through 3.30.00.20 and BLE-STACK through 1.5.0 before Q4 2019 for CC2640R2 and CC2540/1 devices does not properly restrict the advertisement connection request packet on reception, allowing attackers in radio range to cause a denial of service (crash) via a crafted packet.
References
Link | Resource |
---|---|
http://www.ti.com/tool/BLE-STACK | Vendor Advisory |
https://asset-group.github.io/disclosures/sweyntooth/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-02-10T20:33:05
Updated: 2020-02-10T20:33:05
Reserved: 2019-11-21T00:00:00
Link: CVE-2019-19193
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-02-10T21:51:32.843
Modified: 2020-02-14T18:11:19.090
Link: CVE-2019-19193
JSON object: View
Redhat Information
No data.
CWE