Vulnerability in Zephyr Bluetooth Controller Affects Communication Integrity
CVE-2026-9263

6.5MEDIUM

Key Information:

Vendor: Zephyrproject
Status: Zephyr
Vendor: CVE Published:; 30 June 2026

🔔 Create Zephyrproject Vulnerability Alert

What is CVE-2026-9263?

The Zephyr Bluetooth Controller's ISO Adaptation Layer has a critical flaw that allows attackers to send poorly formatted packets, leading to potential out-of-bounds reading of controller memory. The issue arises from the improper validation of the length field in ISO PDU start segments, enabling malicious actors to exploit this vulnerability remotely. When segments with insufficient length (less than 3 bytes) are accepted, it can result in unintended, oversized memory access during data handling, causing information disclosure and possible denial of service on affected devices.

Affected Version(s)

zephyr 3.3.0 < 4.5.0

References

https://github.com/zephyrproject-rtos/zephyr/commit/28080...

patch

https://github.com/zephyrproject-rtos/zephyr/security/adv...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2026
Vulnerability Reserved
May 21, 2026

CVE-2026-9263 Data

JSON