Security News > 2020 > February > SweynTooth: Bluetooth Vulnerabilities Expose Many Devices to Attacks
"The exploitation of the vulnerabilities translates to dangerous attack vectors against many IoT products released in 2018-2019. At first glance, most of the vulnerabilities affect product's availability by allowing them to be remotely restarted, deadlocked or having their security bypassed," the whitepaper reads.
A search on the Bluetooth Listing Search site returns around 480 product listings that employ the affected SoCs, each listing containing multiple products from the same vendor.
A vulnerability dubbed Truncated L2CAP affects Dialog DA14580 devices running SDK 5.0.4 or earlier and results in DoS and a crash, the same as Silent Length Overflow, which affects Dialog DA14680 devices.
Some of the affected products include the 2018 smartwatch lineup from FitBit, Eve Systems smart home products, the CubiTag Bluetooth tracker, and the eGee Touch smart luggage lock.
"Our findings expose some fundamental attack vectors against certified and recertified BLE Stacks which are supposed to be 'safe' against such flaws. We carefully investigated the reasons that might explain the presence of SweynTooth vulnerabilities on the affected SoCs. We believe this is due to the imposed isolation between the link layer and other Bluetooth protocols, via the Host Controller Interface protocol," the researchers note.