CVE-2023-5753

MEDIUM

Zephyr < 3.4.0 - Integer Underflow

Title source: rule
STIX 2.1

Description

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hci_core.c

References (4)

Scores

CVSS v3 6.3
EPSS 0.0023
EPSS Percentile 45.8%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE
CWE-191 CWE-120
Status published
Products (1)
zephyrproject/zephyr < 3.4.0
Published Oct 25, 2023
Tracked Since Feb 18, 2026