Denial of Service Vulnerability in Realtek RTL8762E BLE SDK
CVE-2024-48290

4.3MEDIUM

Key Information:

Vendor: Realtek
Status: RTL8762E BLE SDK
Vendor: CVE Published:; 7 November 2024

What is CVE-2024-48290?

The Bluetooth Low Energy implementation within the Realtek RTL8762E BLE SDK, specifically in version 1.4.0, is susceptible to a Denial of Service attack. By sending a maliciously crafted ll_terminate_ind packet, an attacker can disrupt the operation of the affected device, potentially rendering it inoperable. This vulnerability underscores the importance of securing BLE implementations against such attacks to maintain system availability and reliability.

References

http://realtek.com

https://gitee.com/guozhi123456/vulnerability-Report/blob/...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 7, 2024

CVE-2024-48290 Data

JSON