CVE-2024-3077

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Mar 29, 2024

CWE ID 190

CWE ID 126

Summary

CVE-2024-3077 is a newly identified vulnerability affecting Bluetooth Low Energy (BLE) devices. An attacker can exploit this issue by sending malformed GATT (Generic Attribute Profile) packets to a victim device using a malicious BLE device. The malformed packets can cause the victim device to crash, potentially leading to a denial-of-service (DoS) condition or even more serious consequences if the victim device is handling sensitive data. This vulnerability highlights the importance of securing BLE devices against rogue connections and unvalidated data.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vEbG31
https://www.cve.org/CVERecord?id=CVE-2024-3077
https://nvd.nist.gov/vuln/detail/CVE-2024-3077

Back to Vulnerability Database

CVE-2024-3077

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations