Vulnerability Description
The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMP_features_res packets.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Actions-Semi | Ats2819P Firmware | - |
| Actions-Semi | Ats2819P | - |
| Actions-Semi | Ats2815 Firmware | - |
| Actions-Semi | Ats2815 | - |
| Actions-Semi | Ats2819 Firmware | - |
| Actions-Semi | Ats2819 | - |
| Actions-Semi | Ats2819S Firmware | - |
| Actions-Semi | Ats2819S | - |
| Actions-Semi | Ats2819T Firmware | - |
| Actions-Semi | Ats2819T | - |
Related Weaknesses (CWE)
References
- https://dl.packetstormsecurity.net/papers/general/braktooth.pdfBroken Link
- https://launchstudio.bluetooth.com/ListingDetails/76427Third Party Advisory
- https://www.actions-semi.com/index.php?id=3581&siteId=4Vendor Advisory
- https://dl.packetstormsecurity.net/papers/general/braktooth.pdfBroken Link
- https://launchstudio.bluetooth.com/ListingDetails/76427Third Party Advisory
- https://www.actions-semi.com/index.php?id=3581&siteId=4Vendor Advisory
FAQ
What is CVE-2021-31787?
CVE-2021-31787 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial o...
How severe is CVE-2021-31787?
CVE-2021-31787 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-31787?
Check the references section above for vendor advisories and patch information. Affected products include: Actions-Semi Ats2819P Firmware, Actions-Semi Ats2819P, Actions-Semi Ats2815 Firmware, Actions-Semi Ats2815, Actions-Semi Ats2819 Firmware.