Vulnerability Description
The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through 1.0.14.1081 for DA1468x devices responds to link layer packets with a payload length larger than expected, allowing attackers in radio range to cause a buffer overflow via a crafted packet. This affects, for example, August Smart Lock.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dialog-Semiconductor | Software Development Kit | <= 1.0.14.1081 |
| Dialog-Semiconductor | Da14680 | - |
| Dialog-Semiconductor | Da14681 | - |
| Dialog-Semiconductor | Da14682 | - |
| Dialog-Semiconductor | Da14683 | - |
Related Weaknesses (CWE)
References
- https://asset-group.github.io/disclosures/sweyntooth/Third Party Advisory
- https://www.dialog-semiconductor.com/ja/products/connectivity/bluetooth-low-enerVendor Advisory
- https://asset-group.github.io/disclosures/sweyntooth/Third Party Advisory
- https://www.dialog-semiconductor.com/ja/products/connectivity/bluetooth-low-enerVendor Advisory
FAQ
What is CVE-2019-17518?
CVE-2019-17518 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through 1.0.14.1081 for DA1468x devices responds to link layer packets with a payload length larger than expected, allowing attacker...
How severe is CVE-2019-17518?
CVE-2019-17518 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-17518?
Check the references section above for vendor advisories and patch information. Affected products include: Dialog-Semiconductor Software Development Kit, Dialog-Semiconductor Da14680, Dialog-Semiconductor Da14681, Dialog-Semiconductor Da14682, Dialog-Semiconductor Da14683.