Stack-based Buffer Overflow Vulnerability in Alpine iLX-507 Device
CVE-2025-8477
7.4HIGH
What is CVE-2025-8477?
The Alpine iLX-507 device contains a stack-based buffer overflow vulnerability due to improper validation of vCard data during parsing. This issue enables network-adjacent attackers to execute arbitrary code by connecting a malicious Bluetooth device. Exploiting this flaw requires user interaction to establish the connection, which compromises the device by allowing code execution in the context of root. Proper safeguards and validation checks must be implemented to protect against such attacks.
Affected Version(s)
iLX-507 6.0.000