Skip to main content

Wireless Internet Connectivity For Embedded Devices

3 CVEs product

Monthly

CVE-2021-34148 MEDIUM This Month

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Wireless Internet Connectivity For Embedded Devices
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2021-34147 MEDIUM This Month

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the reception of a malformed LMP timing accuracy response followed by multiple. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Wireless Internet Connectivity For Embedded Devices
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2021-34145 MEDIUM This Month

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with an invalid Baseband packet type. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required. No vendor patch available.

Denial Of Service Wireless Internet Connectivity For Embedded Devices
NVD
CVSS 3.1
5.3
EPSS
0.5%
EPSS 1% CVSS 6.5
MEDIUM This Month

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Wireless Internet Connectivity For Embedded Devices
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the reception of a malformed LMP timing accuracy response followed by multiple. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Wireless Internet Connectivity For Embedded Devices
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with an invalid Baseband packet type. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required. No vendor patch available.

Denial Of Service Wireless Internet Connectivity For Embedded Devices
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy