CVE-2026-31280: Parani M10 Bluetooth RFCOMM Buffer Overflow and Unauthorized Command Injection

CVE-2026-31280: Parani M10 Intercom Bluetooth RFCOMM Vulnerability Summary Vulnerability Overview Vulnerability Name: CVE-2026-31280: Insecure Bluetooth "RFCOMM" Leading to Device Crash in Parani M10 Intercom Vulnerability Type: Insecure Bluetooth Communication (RFCOMM), Buffer Overflow, Unauthorized Command Injection, Man-in-the-Middle Attack (MITM). Affected Devices: Parani M10 Intercom (Firmware Version V2.1.3). CVSS Score: 8.0 (High). Root Cause: The device exposes an unauthenticated Bluetooth Classic RFCOMM service and lacks input length validation. An attacker within Bluetooth range can establish a connection and send malicious data, causing buffer overflow or command injection. Impact Scope Availability: Causes device crash, reboot, or Denial of Service (DoS), requiring manual intervention to restore. Integrity: Attacker can inject arbitrary commands or play malicious audio, disrupting normal device operation. Confidentiality: Allows unauthorized data injection and communication disruption. Business Impact: May lead to operational downtime, reduced customer trust, damage to brand reputation, and compliance risks. Remediation Current Status: Page shows status as "Not Fixed". Recommended Measures: Vendor should fix input validation logic for the RFCOMM service, limit input length, and implement Bluetooth pairing authentication mechanisms to prevent unauthorized connections. POC Code & Exploit Scripts 1. Buffer Overflow Attack Step 6: Execute Crafted Script This script is used to send unauthorized and oversized input data via an RFCOMM session. 2. Man-In-The-Middle Attack Step 2: Inject Audio Data Use the command to inject noise through the Bluetooth audio channel. 3. Denial-of-Service Attack Step 4: Perform DoS Attack on RFCOMM** The page describes a process of causing device disconnection and crash via DoS attack on the RFCOMM channel, but no specific automated script code is provided. It mainly relies on manually connecting/disconnecting or sending large amounts of invalid data.

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-31280: Parani M10 Bluetooth RFCOMM Buffer Overflow and Unauthorized Command Injection