Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-11516

EPSS 0.62% · P70
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-11516

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue was discovered in the Bluetooth component of the Cypress (formerly owned by Broadcom) Wireless IoT codebase. Extended Inquiry Responses (EIRs) are improperly handled, which causes a heap-based buffer overflow during device inquiry. This overflow can be used to overwrite existing functions with arbitrary code. The Reserved for Future Use (RFU) bits are not discarded by eir_handleRx(), and are included in an EIR's length. Therefore, one can exceed the expected 240 bytes, which leads to a heap-based buffer overflow in eir_getReceivedEIR() called by bthci_event_SendInquiryResultEvent(). In order to exploit this bug, an attacker must repeatedly connect to the victim's device in a short amount of time from different source addresses. This will cause the victim's Bluetooth stack to resolve the device names and therefore allocate buffers with attacker-controlled data. Due to the heap corruption, the name will be eventually written to an attacker-controlled location, leading to a write-what-where condition.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Android Broadcom Bluetooth组件缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Android是美国谷歌(Google)和开放手持设备联盟(简称OHA)的一套以Linux为基础的开源操作系统。 Android中的Broadcom Bluetooth存在远程代码执行漏洞。远程攻击者可利用该漏洞执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2019-11516

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-11516

登录查看更多情报信息。

Same Patch Batch · n/a · 2020-02-05 · 36 CVEs total

CVE-2010-5304LibVNCServer 代码问题漏洞
CVE-2020-7967GitLab 安全漏洞
CVE-2020-7966GitLab 路径遍历漏洞
CVE-2019-12180SmartBear Software ReadyAPI和SoapUI 输入验证错误漏洞
CVE-2020-6754dotCMS 代码问题漏洞
CVE-2019-15126Broadcom WiFi Chipset Drivers 加密问题漏洞
CVE-2020-6833GitLab 信息泄露漏洞
CVE-2013-2675Brother MFC-9970CDW 安全漏洞
CVE-2019-20447Jobberbase SQL注入漏洞
CVE-2020-7968GitLab 授权问题漏洞
CVE-2019-20173WordPress Auth0 wp-auth0 跨站脚本漏洞
CVE-2020-8641Lotus Core CMS 路径遍历漏洞
CVE-2020-6854SOS JobScheduler JOC Cockpit组件跨站脚本漏洞
CVE-2013-2680Cisco Linksys E4200 安全漏洞
CVE-2013-2681Cisco Linksys E4200 授权问题漏洞
CVE-2013-2682Cisco Linksys E4200 安全漏洞
CVE-2020-8644PlaySMS 输入验证错误漏洞
CVE-2011-1517SAP Netweaver 安全漏洞
CVE-2020-7977GitLab 安全漏洞
CVE-2020-8632Cloud-init 安全漏洞

Showing top 20 of 36 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2019-11516

No comments yet

Leave a comment