PT-2019-14489 · Texas Instruments · Wl18Xx-Bt-Sp+1

Published

2019-11-13

Updated

2020-08-18

CVE-2019-15948

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Texas Instruments CC256xC-BT-SP versions 1.2 Texas Instruments CC256xB-BT-SP version 1.8 Texas Instruments WL18xx-BT-SP version 4.4

Description The issue allows remote attackers to trigger a buffer overflow via a malformed Bluetooth Low Energy advertising packet when LE scan mode is used, potentially causing a denial of service or executing arbitrary code.

Recommendations For Texas Instruments CC256xC-BT-SP version 1.2, update the firmware to prevent the buffer overflow. For Texas Instruments CC256xB-BT-SP version 1.8, update the firmware to prevent the buffer overflow. For Texas Instruments WL18xx-BT-SP version 4.4, update the firmware to prevent the buffer overflow.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2019-15948

Affected Products

Cc256Xb-Bt-Sp

Wl18Xx-Bt-Sp

PT-2019-14489 · Texas Instruments · Wl18Xx-Bt-Sp+1

CVE-2019-15948

Weakness Enumeration

Related Identifiers

Affected Products

References · 8