CVE-2024-2105 | THREATINT

Description

An unauthorised attacker within bluetooth range may use an improper validation during the BLE connection request to deadlock the affected devices.

PUBLISHED Reserved 2024-03-01 | Published 2025-12-10 | Updated 2025-12-10 | Assigner CERTVDE

MEDIUM: 6.5CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-1287 Improper Validation of Specified Type of Input

Product status

Default status

unaffected

*

affected

Default status

unaffected

*

affected

Default status

unaffected

*

affected

Default status

unaffected

*

affected

Default status

unaffected

*

affected

Default status

unaffected

*

affected

Default status

unaffected

*

affected

Credits

Mattar Bernhard from Hummus Sec reporter

References

harman.csaf-tp.certvde.com/...white/2025/hbsa-2025-0002.json vendor-advisory

certvde.com/en/advisories/VDE-2025-089

cve.org (CVE-2024-2105)

nvd.nist.gov (CVE-2024-2105)

Download JSON

help @ threatint.eu