CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-30904
https://notcve.org/view.php?id=CVE-2022-30904
01 Feb 2023 — In Bestechnic Bluetooth Mesh SDK (BES2300) V1.0, a buffer overflow vulnerability can be triggered during provisioning, because there is no check for the SegN field of the Transaction Start PDU. • https://docs.google.com/document/d/1is3dYwMcRIkhjvujzi5OgnaGBsQVtlew/edit • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-26529 – Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow
https://notcve.org/view.php?id=CVE-2022-26529
30 Aug 2022 — Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for segmented packets’ link parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service. Realtek Linux/Android Bluetooth Mesh SDK presenta una vulnerabilidad de desbordamiento de búfer debido a que no se comprueba suficientemente el parámetro de enlace de los paquetes segmentados. Un atacante no autenticado en la red adyace... • https://www.twcert.org.tw/tw/cp-132-6459-09c82-1.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-26528 – Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow
https://notcve.org/view.php?id=CVE-2022-26528
30 Aug 2022 — Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the length of segmented packets’ shift parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service. Realtek Linux/Android Bluetooth Mesh SDK presenta una vulnerabilidad de desbordamiento de búfer debido a una comprobación insuficiente de la longitud del parámetro de desplazamiento de los paquetes segmentados. Un atacant... • https://www.twcert.org.tw/tw/cp-132-6458-5052f-1.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-26527 – Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow
https://notcve.org/view.php?id=CVE-2022-26527
30 Aug 2022 — Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the size of segmented packets’ reference parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service. Realtek Linux/Android Bluetooth Mesh SDK presenta una vulnerabilidad de desbordamiento de búfer debido a que no es comprobado suficientemente el tamaño del parámetro de referencia de los paquetes segmentados. Un atacant... • https://www.twcert.org.tw/tw/cp-132-6457-66bc9-1.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-25635 – Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow
https://notcve.org/view.php?id=CVE-2022-25635
30 Aug 2022 — Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for broadcast network packet length. An unauthenticated attacker in the adjacent network can exploit this vulnerability to disrupt service. Realtek Linux/Android Bluetooth Mesh SDK presenta una vulnerabilidad de desbordamiento de búfer debido a que no es comprobado suficientemente la longitud de los paquetes de red de difusión. Un atacante no autenticado en la red adyacente puede explotar esta vulnera... • https://www.twcert.org.tw/tw/cp-132-6456-fc6c5-1.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •