← back
CVE-2021-28155

CVE-2021-28155

EPSS 0.4%
The Bluetooth Classic implementation on JBL TUNE500BT devices does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown a device by flooding the target device with LMP Feature Response data.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://dl.packetstormsecurity.net/papers/general/braktooth.pdfhttps://www.jbl.com.sg/over-ear-headphones/JBL+TUNE500BT.html