Vulnerability Description
NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.8.0. Users are recommended to upgrade to version 1.9.0, which fixes the issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Nimble | < 1.9.0 |
Related Weaknesses (CWE)
References
- https://github.com/apache/mynewt-nimble/commit/0caf9baeb271ede85fcc5237ab87ddbf9Patch
- https://github.com/apache/mynewt-nimble/commit/3160b8c4c7ff8db4e0f9badcdf7df684bPatch
- https://lists.apache.org/thread/1dxthc132hwm2tzvjblrtnschcsbw2voMailing ListVendor Advisory
- http://www.openwall.com/lists/oss-security/2026/01/08/3Mailing ListThird Party Advisory
FAQ
What is CVE-2025-53477?
CVE-2025-53477 is a vulnerability with a CVSS score of 7.5 (HIGH). NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled as...
How severe is CVE-2025-53477?
CVE-2025-53477 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-53477?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Nimble.