This thread has been locked.
If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.
Part Number: CC2564C
A potential security vulnerability has been identified in TI CC256x and WL18xx dual-mode Bluetooth controller devices. If using Bluetooth Low Energy and LE scan feature, attackers may be able to trigger a buffer overflow via a malformed Bluetooth Low Energy advertising packet to cause a denial of service or potentially execute arbitrary code.
See below for additional information and suggested mitigation.
CVSS base score: 7.6
CVSS Vector: (CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H)
Note: The TI CC26xx, CC13xx and CC254x Bluetooth Low Energy wireless MCUs are not affected by this vulnerability.
This potential vulnerability is only exploitable if one of the affected devices mentioned above is configured to use (1) Bluetooth Low Energy feature, and (2) The LE scan (observer) is enabled in Bluetooth Low Energy. If Bluetooth Low Energy is disabled or configured in broadcaster/advertiser role or in peripheral role with no scan enabled, the exploit is not possible.
The following service-pack releases address the vulnerability described in the CVE-2019-15948.
*Note: For information on CC256XB, or other TI dual-mode Bluetooth devices that are not listed above, please contact firstname.lastname@example.org.
TI would like to thank Veronica Kovah, from Dark Mentor LLC, for reporting this vulnerability to TI PSIRT and working toward a coordinated disclosure.
TI PROVIDES THE CVSS (COMMON VULNERABILITY SCORING SYSTEM) SCORE “AS IS” AND WITHOUT WARRANTY OF ANY KIND. THE CVSS SCORE WAS CALCULATED WITH THE CVSS 3.0 CALCULATOR AND IS BASED ON TI AVAILABLE INFORMATION AND TI ESTIMATES. CUSTOMERS OF AFFECTED PRODUCTS ARE SOLELY RESPONSIBLE FOR THE SECURITY OF THEIR PRODUCTS AND ARE ENCOURAGED TO ASSESS THE POSSIBLE RISK OF ANY POTENTIAL SECURITY VULNERABILITY.
Edit: More information regarding the CVE-2019-15948 can be found on the National Vulnerability Database (NVD) at https://nvd.nist.gov/vuln/detail/CVE-2019-15948.
We are glad that we were able to resolve this issue, and will now proceed to close this thread.
If you have further questions related to this thread, you may click "Ask a related question" below. The newly created question will be automatically linked to this question.
All content and materials on this site are provided "as is". TI and its respective suppliers and providers of content make no representations about the suitability of these materials for any purpose and disclaim all warranties and conditions with regard to these materials, including but not limited to all implied warranties and conditions of merchantability, fitness for a particular purpose, title and non-infringement of any third party intellectual property right. No license, either express or implied, by estoppel or otherwise, is granted by TI. Use of the information on this site may require a license from a third party, or a license from TI.
TI is a global semiconductor design and manufacturing company. Innovate with 100,000+ analog ICs andembedded processors, along with software, tools and the industry’s largest sales/support staff.