CVE-2021-34150

Name of the Vulnerable Software and Affected Versions Bluetrum AB5301A (affected versions not specified)

Description The Bluetooth Classic implementation does not properly handle the reception of oversized DM1 LMP packets while no other BT connections are active, allowing attackers in radio range to prevent new BT connections via a crafted LMP packet. This can disable the AB5301A inquiry and page scan procedures. The issue is related to a buffer overflow in memory. To restore BT connectivity, the user needs to manually perform a power cycle (restart) of the device.

Recommendations For Bluetrum AB5301A devices, as a temporary workaround, consider restarting the device manually to restore BT connectivity after an attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.