Stack-based Buffer Overflow in Alpine iLX-507 Bluetooth Device
CVE-2025-8472
7.4HIGH
What is CVE-2025-8472?
The Alpine iLX-507 experiences a critical flaw in its vCard data parsing mechanism, which can lead to a stack-based buffer overflow. This vulnerability enables network-adjacent attackers to potentially execute arbitrary code on compromised devices. Exploitation requires user interaction, as the targeted device must establish a Bluetooth connection with a mal-intended device. The core issue stems from inadequate validation of the data length provided by users, allowing attackers to manipulate the stack memory to their advantage.
Affected Version(s)
iLX-507 6.0.000