CVE-2024-45431

Medium CVSS: 5.3

OpenSynergy BlueSDK (aka Blue SDK) through 6.x has Improper Input Validation. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from the lack of proper validation of remote L2CAP channel ID (CID). An attacker can leverage this to create an L2CAP channel with the null identifier assigned as a remote CID.

Vendor

Opensynergy

Product

Blue Sdk

CWE

CWE-20

Yayın Tarihi

2025-09-12 17:15:45

Güncelleme

2025-10-02 20:03:21

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-20 Blue Sdk MEDIUM Opensynergy 2025

Referanslar

https://pcacybersecurity.com/resources/advisory/perfekt-blue https://www.opensynergy.com/

Benzer Kayıtlar

High

CVE-2024-45432

OpenSynergy BlueSDK (aka Blue SDK) through 6.x mishandles a function call. The specific flaw exists within the BlueSDK B…

Medium

CVE-2024-45433

OpenSynergy BlueSDK (aka Blue SDK) through 6.x has Incorrect Control Flow Scoping. The specific flaw exists within the B…

Critical

CVE-2024-45434

OpenSynergy BlueSDK (aka Blue SDK) through 6.x has a Use-After-Free. The specific flaw exists within the BlueSDK Bluetoo…