Vulnerability Description
Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI advertising report could lead to out-of-bound access when parsing HCI event and thus bogus GAP 'device found' events being sent. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to version 1.8.0, which fixes the issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Nimble | < 1.8.0 |
Related Weaknesses (CWE)
References
- https://github.com/apache/mynewt-nimble/commit/23d61150ddae4bc8356356d7ef09d816fPatch
- https://github.com/apache/mynewt-nimble/commit/3b7a32ea09a3bffaab831ee0ab193a237Patch
- https://lists.apache.org/thread/zdb50spojlqbn0yxd866mbzqjt2vpt85Mailing ListVendor Advisory
- http://www.openwall.com/lists/oss-security/2024/11/26/4Mailing ListVendor Advisory
FAQ
What is CVE-2024-47250?
CVE-2024-47250 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI advertising report could lead to out-of-bound access when parsing HCI event and thus bogus GAP 'device found' event...
How severe is CVE-2024-47250?
CVE-2024-47250 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-47250?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Nimble.