CVE-2021-34144

Name of the Vulnerable Software and Affected Versions Zhuhai Jieli AC6366C BT SDK versions 0.9.1 and earlier

Description The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C BT SDK does not properly handle the reception of truncated LMP SCO Link Request packets while no other BT connections are active. This allows attackers in radio range to prevent new BT connections by disabling the AB5301A inquiry and page scan procedures via a crafted LMP packet. The issue arises due to insufficient input validation. To restore BT connectivity, the user needs to manually perform a power cycle (restart) of the device.

Recommendations For versions 0.9.1 and earlier, as a temporary workaround, consider restarting the device to restore BT connectivity after an attack. To prevent exploitation, avoid using the LMP SCO Link Request packet until a patch is available. Restrict access to the Bluetooth Classic implementation to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.