CVE-2024-45431
- EPSS 0.13%
- Veröffentlicht 12.09.2025 00:00:00
- Zuletzt bearbeitet 02.10.2025 20:03:21
OpenSynergy BlueSDK (aka Blue SDK) through 6.x has Improper Input Validation. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of proper validation of remote L2CAP channel ID (CID). An attacker can leverage...
CVE-2024-45432
- EPSS 0.06%
- Veröffentlicht 12.09.2025 00:00:00
- Zuletzt bearbeitet 02.10.2025 20:03:09
OpenSynergy BlueSDK (aka Blue SDK) through 6.x mishandles a function call. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from an incorrect variable used as a function argument. An attacker can leverage this to cause u...
CVE-2024-45433
- EPSS 0.02%
- Veröffentlicht 12.09.2025 00:00:00
- Zuletzt bearbeitet 02.10.2025 20:02:34
OpenSynergy BlueSDK (aka Blue SDK) through 6.x has Incorrect Control Flow Scoping. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of proper return control flow after detecting an unusual condition. An att...
CVE-2024-45434
- EPSS 1.1%
- Veröffentlicht 12.09.2025 00:00:00
- Zuletzt bearbeitet 02.10.2025 20:00:43
OpenSynergy BlueSDK (aka Blue SDK) through 6.x has a Use-After-Free. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of validating the existence of an object before performing operations on the object (aka...
CVE-2018-20378
- EPSS 0.7%
- Veröffentlicht 29.03.2019 15:29:00
- Zuletzt bearbeitet 21.11.2024 04:01:21
The L2CAP signaling channel implementation and SDP server implementation in OpenSynergy Blue SDK 3.2 through 6.0 allow remote, unauthenticated attackers to execute arbitrary code or cause a denial of service via malicious L2CAP configuration requests...