CVE-2020-15531

Name of the Vulnerable Software and Affected Versions Silicon Labs Bluetooth Low Energy SDK versions prior to 2.13.3

Description The issue is related to a buffer overflow that can be triggered via packet data, leading to a remote code execution vulnerability in Bluetooth Low Energy (LE) for EFR32 SoCs and associated modules. This vulnerability affects devices running the Bluetooth SDK that support Central or Observer roles.

Recommendations For versions prior to 2.13.3, update to version 2.13.3 or later to resolve the issue. As a temporary workaround, consider restricting access to Bluetooth LE functionality to minimize the risk of exploitation.