Denial of Service Risk in Cypress Bluetooth SDK Bluetooth Low Energy Implementation
CVE-2024-48289

Currently unrated

Key Information:

Vendor

Cypress

Status
Bluetooth SDK
Vendor
CVE Published:
1 November 2024

What is CVE-2024-48289?

A vulnerability in the Bluetooth Low Energy implementation of Cypress Bluetooth SDK v3.66 allows attackers to exploit the system by sending a specially crafted LL_PAUSE_ENC_REQ packet. This can lead to a Denial of Service (DoS), potentially disrupting the normal operation of Bluetooth services and impacting connected devices.

References

https://community.infineon.com/t5/PSoC-4/BLE-SDK-Integer-...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2024-48289 : Denial of Service Risk in Cypress Bluetooth SDK Bluetooth Low Energy Implementation