1. Home
  2. CVE Database
  3. CVE-2021-31612
MEDIUM · 6.5

CVE-2021-31612

The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the reception of an oversized LMP packet greater than 17 bytes during the LMP auto rate procedure, allowing...

Vulnerability Description

The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the reception of an oversized LMP packet greater than 17 bytes during the LMP auto rate procedure, allowing attackers in radio range to trigger a deadlock via a crafted LMP packet.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
Zh-JieliAc6901 Firmware-
Zh-JieliAc6901-
Zh-JieliAc690N Firmware-
Zh-JieliAc690N-
Zh-JieliAc692N Firmware-
Zh-JieliAc692N-
Zh-JieliAc6902 Firmware-
Zh-JieliAc6902-
Zh-JieliAc6903 Firmware-
Zh-JieliAc6903-
Zh-JieliAc6905 Firmware-
Zh-JieliAc6905-
Zh-JieliAc6904 Firmware-
Zh-JieliAc6904-
Zh-JieliAc6907 Firmware-
Zh-JieliAc6907-
Zh-JieliAc6908 Firmware-
Zh-JieliAc6908-
Zh-JieliAc6997 Firmware-
Zh-JieliAc6997-

References

FAQ

What is CVE-2021-31612?

CVE-2021-31612 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the reception of an oversized LMP packet greater than 17 bytes during the LMP auto rate procedure, allowing...

How severe is CVE-2021-31612?

CVE-2021-31612 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-31612?

Check the references section above for vendor advisories and patch information. Affected products include: Zh-Jieli Ac6901 Firmware, Zh-Jieli Ac6901, Zh-Jieli Ac690N Firmware, Zh-Jieli Ac690N, Zh-Jieli Ac692N Firmware.