CVE-2021-34145
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-34145
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-34145.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-34145
- Downstream
- Published
- 2021-09-07T07:15:07Z
- Modified
- 2025-08-09T20:01:27Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot with an invalid Baseband packet type (and LTADDRESS and LTADDR) after completion of the LMP setup procedure, allowing attackers in radio range to trigger a denial of service (firmware crash) via a crafted LMP packet.
- References