Buffer Overflow Vulnerability in NXP SDK for KW41Z Devices via Bluetooth Low Energy Implementation

Buffer Overflow Vulnerability in NXP SDK for KW41Z Devices via Bluetooth Low Energy Implementation

CVE-2019-17519 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The Bluetooth Low Energy implementation on NXP SDK through 2.2.1 for KW41Z devices does not properly restrict the Link Layer payload length, allowing attackers in radio range to cause a buffer overflow via a crafted packet.

Learn more about our Web Application Penetration Testing UK.