Home
HIGH: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HDefault status
unaffected
06.00.00 (semver) before 06.09.04
affected
Default status
unaffected
Any version before 01.02.00
affected
Default status
unaffected
Any version before 01-01.10.00
affected
Default status
unaffected
03.00.00 (semver) before 03.05.01
affected
Default status
unaffected
Any version before 01-01.09.00
affected
Default status
unaffected
Any version before 02-01.01.00
affected
Description
An unauthenticated remote attacker can cause a buffer overflow which could lead to unexpected behaviour or DoS via Bluetooth or RS-232 interface.
Problem types
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Product status
06.00.00 (semver) before 06.09.04
Any version before 01.02.00
Any version before 01-01.10.00
03.00.00 (semver) before 03.05.01
Any version before 01-01.09.00
Any version before 02-01.01.00
Credits
Dennis Schaefer from ONEKEY GmbH
References
cert.vde.com/en/advisories/VDE-2025-026