cve/2019/CVE-2019-16336.md

CVE-2019-16336

Description

The Bluetooth Low Energy implementation in Cypress PSoC 4 BLE component 3.61 and earlier processes data channel frames with a payload length larger than the configured link layer maximum RX payload size, which allows attackers (in radio range) to cause a denial of service (crash) via a crafted BLE Link Layer frame.

POC

Reference

• https://www.youtube.com/watch?v=Iw8sIBLWE_w

Github

• https://github.com/JeffroMF/awesome-bluetooth-security321
• https://github.com/Matheus-Garbelini/sweyntooth_bluetooth_low_energy_attacks
• https://github.com/engn33r/awesome-bluetooth-security
• https://github.com/sgxgsx/BlueToolkit