Lewei Qu

**Name of the Vulnerable Software and Affected Versions** Config Manager (affected versions not specified) **Description** The issue is related to a possible command injection in Config Manager due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Boa (affected versions not specified) **Description** The issue is related to a possible escalation of privilege due to a stack buffer overflow in Boa. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Boa (affected versions not specified) **Description** The issue is related to a missing permission check, which could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Boa (affected versions not specified) **Description** The issue is related to a missing permission check, which could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Config Manager (affected versions not specified) **Description** In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Config Manager (affected versions not specified) **Description** The issue is related to a possible command injection in Config Manager due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zephyr (affected versions not specified) **Description** An out-of-bound write issue can be triggered in the Zephyr bluetooth mesh core stack during provisioning. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zephyr (affected versions not specified) **Description** An out-of-bound write issue can be triggered in the Zephyr bluetooth mesh core stack during provisioning. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ESP-IDF versions 4.1 through 4.4 **Description** A memory corruption issue can be triggered in the ESP-BLE-MESH component during provisioning due to the lack of a check for the `SegN` field of the Transaction Start PDU. This can lead to memory corruption-related attacks, potentially allowing an attacker to gain control of the entire system. **Recommendations** For ESP-IDF versions 4.1 through 4.4, upgrade to a patched version, as patch commits are available on these branches.

Name of the Vulnerable Software and Affected Versions: Android version Android-11 Description: The issue is related to improper input validation in mobile log d, which could lead to local information disclosure. System execution privileges are needed for exploitation, and user interaction is not required. Recommendations: For Android version Android-11, apply the patch with ID ALPS05457039 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Android version Android-11 Description: The issue is related to a possible memory corruption due to a stack buffer overflow in the aee component. This could lead to local escalation of privilege, with System execution privileges needed. User interaction is not required for exploitation. Recommendations: For Android version Android-11, apply the patch with ID ALPS05457070 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-11 Description: In the `mobile log d` component, a command injection issue exists due to a missing bounds check. This could lead to local escalation of privilege, requiring System execution privileges, and does not need user interaction for exploitation. Recommendations: For Android versions Android-10 through Android-11, apply the patch with ID ALPS05458478 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Espressif ESP-IDF versions 2.x through 4.0.1 **Description** The issue is a Buffer Overflow in BluFi provisioning, specifically in the `btc blufi recv handler` function in `blufi prf.c`. An attacker can exploit this by sending a crafted BluFi protocol Write Attribute command to characteristic `0xFF01`, which can lead to a buffer overflow due to manipulated packet fields. **Recommendations** For Espressif ESP-IDF versions 2.x through 4.0.1, consider disabling the `btc blufi recv handler` function in `blufi prf.c` as a temporary workaround until a patch is available. Restrict access to the BluFi provisioning module to minimize the risk of exploitation. Avoid using the characteristic `0xFF01` in the BluFi protocol until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.