CVE-2021-34150

{"id": "CVE-2021-34150", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2021-09-07T06:15:08.013", "references": [{"url": "http://www.bluetrum.com/product/ab5301a.html", "tags": ["Product", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://dl.packetstormsecurity.net/papers/general/braktooth.pdf", "tags": ["Technical Description", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "The Bluetooth Classic implementation on Bluetrum AB5301A devices with unknown firmware versions does not properly handle the reception of oversized DM1 LMP packets while no other BT connections are active, allowing attackers in radio range to prevent new BT connections (disabling the AB5301A inquiry and page scan procedures) via a crafted LMP packet. The user needs to manually perform a power cycle (restart) of the device to restore BT connectivity."}, {"lang": "es", "value": "Una implementaci\u00f3n de Bluetooth Classic en los dispositivos Bluetrum AB5301A con versiones de firmware desconocidas no maneja apropiadamente la recepci\u00f3n de paquetes LMP DM1 de gran tama\u00f1o mientras no presenta otras conexiones BT activas, permitiendo a atacantes en el rango de radio impedir nuevas conexiones BT (deshabilitando los procedimientos de consulta y exploraci\u00f3n de p\u00e1ginas del AB5301A) por medio de un paquete LMP dise\u00f1ado. El usuario necesita llevar a cabo manualmente un ciclo de alimentaci\u00f3n (reinicio) del dispositivo para restaurar la conectividad BT"}], "lastModified": "2021-09-10T15:16:35.510", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:bluetrum:ab5301a_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5A6CE56-F26F-4934-A90C-F7E5839B745B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:bluetrum:ab5301a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C8D14A4A-F8B1-4B03-919D-98D258818199"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}