CVE-2024-46539

Name of the Vulnerable Software and Affected Versions: Fire-Boltt Artillery Smart Watch NJ-R6E-10.3

Description: The issue is related to insecure permissions in the Bluetooth Low Energy (BLE) component, which can be exploited to cause a Denial of Service (DoS). This may allow an attacker to disconnect a user from an application or disclose protected information. The vulnerability is associated with incorrect clearance or release of resources.

Recommendations: For Fire-Boltt Artillery Smart Watch NJ-R6E-10.3, consider disabling the BLE component as a temporary workaround until a patch is available to prevent potential Denial of Service attacks. Restrict access to the BLE functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.