cve/2021/CVE-2021-28155.md

CVE-2021-28155

Description

The Bluetooth Classic implementation on JBL TUNE500BT devices does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown a device by flooding the target device with LMP Feature Response data.

POC

Reference

• https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
• https://dl.packetstormsecurity.net/papers/general/braktooth.pdf

Github

• https://github.com/JeffroMF/awesome-bluetooth-security321
• https://github.com/engn33r/awesome-bluetooth-security