PT-2025-28939 · Texas Instruments · Simplelink Cc13Xx Cc26Xx Sdk+1
Yangting111
·
Published
2025-07-09
·
Updated
2025-07-10
·
CVE-2025-44525
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Texas Instruments CC2652RB LaunchPad SimpleLink CC13XX CC26XX SDK version 7.41.00.17
Description:
The Texas Instruments CC2652RB LaunchPad SimpleLink CC13XX CC26XX SDK version 7.41.00.17 contains a flaw due to insufficient permission checks on critical fields within Bluetooth Low Energy (BLE) data packets. This allows attackers to cause a Denial of Service (DoS) by sending a crafted
LL Length Req packet.Recommendations:
Update to a newer version of the Texas Instruments CC2652RB LaunchPad SimpleLink CC13XX CC26XX SDK to address the insufficient permission checks.
Exploit
Fix
DoS
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cc2652Rb Launchpad
Simplelink Cc13Xx Cc26Xx Sdk