CVE-2024-47249

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-47249

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47249.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-47249

Published

2024-11-26T12:15:19.123Z

Modified

2025-11-16T03:52:24.952608Z

Severity

5.0 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS Calculator

Summary

[none]

Details

Improper Validation of Array Index vulnerability in Apache NimBLE.

Lack of input validation for HCI events from controller could result in out-of-bound memory corruption and crash. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.7.0.

Users are recommended to upgrade to version 1.8.0, which fixes the issue.

References

Affected packages

Git / github.com/apache/mynewt-nimble

Affected ranges

Type: GIT
Repo: https://github.com/apache/mynewt-nimble
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

f39330866a85fa4de49246e9d21334bc8d14f0a1

Affected versions

Other

nimble_1_5_0_rc1_tag

nimble_1_5_0_tag

nimble_1_6_0_rc1_tag

nimble_1_6_0_tag

nimble_1_7_0_rc1_tag

nimble_1_7_0_tag

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-47249.json"

vanir_signatures

[
    {
        "digest": {
            "function_hash": "270438058109004378561357014196814602390",
            "length": 246.0
        },
        "id": "CVE-2024-47249-1f0ef622",
        "signature_type": "Function",
        "source": "https://github.com/apache/mynewt-nimble/commit/f39330866a85fa4de49246e9d21334bc8d14f0a1",
        "target": {
            "function": "ble_hs_hci_evt_le_scan_req_rcvd",
            "file": "nimble/host/src/ble_hs_hci_evt.c"
        },
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "digest": {
            "function_hash": "29027117792768621093660641003078387754",
            "length": 332.0
        },
        "id": "CVE-2024-47249-a01d4960",
        "signature_type": "Function",
        "source": "https://github.com/apache/mynewt-nimble/commit/f39330866a85fa4de49246e9d21334bc8d14f0a1",
        "target": {
            "function": "ble_hs_hci_evt_le_adv_set_terminated",
            "file": "nimble/host/src/ble_hs_hci_evt.c"
        },
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "digest": {
            "line_hashes": [
                "262402481772640241380376610293456476714",
                "54369568523554763702957542816337250978",
                "212791865410621146680938843818637804850",
                "92254143833132285346641582781175036469",
                "196588438956566386415588987458330682338",
                "91586677457005599151968404315018063118"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-47249-aa6ef709",
        "signature_type": "Line",
        "source": "https://github.com/apache/mynewt-nimble/commit/f39330866a85fa4de49246e9d21334bc8d14f0a1",
        "target": {
            "file": "nimble/host/src/ble_hs_hci_evt.c"
        },
        "deprecated": false,
        "signature_version": "v1"
    }
]