6.3.0

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

silabs

NVD

Published: 2021-09-07

Updated: 2021-09-20

Summary

The Bluetooth Classic implementation in Silicon Labs iWRAP 6.3.0 and earlier does not properly handle the reception of an oversized LMP packet greater than 17 bytes, allowing attackers in radio range to trigger a crash in WT32i via a crafted LMP packet.

Vulnerable Configurations

Part	Description	Count
Application	Silabs Silabs Iwrap - Silabs Iwrap 5.8 Silabs Iwrap 6.3.0	3
Hardware	Silabs Silabs Wt32I A -	1

References

https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
https://www.silabs.com/wireless/bluetooth/bluegiga-classic-legacy-modules/device.wt32i-a