Vulnerability Description
The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C_DEMO_V1.0 does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service (deadlock) of the device by flooding it with LMP_AU_Rand packets after paging procedure. User intervention is required to restart the device.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Zh-Jieli | Fw-Ac63 Bt Sdk | 1.0.0 |
| Zh-Jieli | Ac6936 | - |
| Zh-Jieli | Ac6951 | - |
| Zh-Jieli | Ac6952 | - |
| Zh-Jieli | Ac6954 | - |
| Zh-Jieli | Ac6955 | - |
| Zh-Jieli | Ac6956 | - |
| Zh-Jieli | Ac6963 | - |
| Zh-Jieli | Ac6965 | - |
| Zh-Jieli | Ac6966 | - |
| Zh-Jieli | Ac6969 | - |
| Zh-Jieli | Ac6973 | - |
| Zh-Jieli | Ac6976 | - |
| Zh-Jieli | Ac6983 | - |
| Zh-Jieli | Ac6986 | - |
References
- https://dl.packetstormsecurity.net/papers/general/braktooth.pdfBroken Link
- https://github.com/Jieli-Tech/fw-AC63_BT_SDKThird Party Advisory
- https://launchstudio.bluetooth.com/ListingDetails/91371Third Party Advisory
- https://dl.packetstormsecurity.net/papers/general/braktooth.pdfBroken Link
- https://github.com/Jieli-Tech/fw-AC63_BT_SDKThird Party Advisory
- https://launchstudio.bluetooth.com/ListingDetails/91371Third Party Advisory
FAQ
What is CVE-2021-34143?
CVE-2021-34143 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C_DEMO_V1.0 does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger ...
How severe is CVE-2021-34143?
CVE-2021-34143 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-34143?
Check the references section above for vendor advisories and patch information. Affected products include: Zh-Jieli Fw-Ac63 Bt Sdk, Zh-Jieli Ac6936, Zh-Jieli Ac6951, Zh-Jieli Ac6952, Zh-Jieli Ac6954.