1. Home
  2. CVE Database
  3. CVE-2021-31613
MEDIUM · 6.5

CVE-2021-31613

The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle the reception of a truncated LMP packet during the LMP auto rate procedure, allowing attackers i...

Vulnerability Description

The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle the reception of a truncated LMP packet during the LMP auto rate procedure, allowing attackers in radio range to immediately crash (and restart) a device via a crafted LMP packet.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
Zh-JieliAc6901 Firmware-
Zh-JieliAc6901-
Zh-JieliAc6925 Firmware-
Zh-JieliAc6925-
Zh-JieliAc6926 Firmware-
Zh-JieliAc6926-
Zh-JieliAc6928 Firmware-
Zh-JieliAc6928-
Zh-JieliAc6921 Firmware-
Zh-JieliAc6921-

References

FAQ

What is CVE-2021-31613?

CVE-2021-31613 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle the reception of a truncated LMP packet during the LMP auto rate procedure, allowing attackers i...

How severe is CVE-2021-31613?

CVE-2021-31613 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-31613?

Check the references section above for vendor advisories and patch information. Affected products include: Zh-Jieli Ac6901 Firmware, Zh-Jieli Ac6901, Zh-Jieli Ac6925 Firmware, Zh-Jieli Ac6925, Zh-Jieli Ac6926 Firmware.