CVE-2025-10456

HIGH

Zephyr < 4.1.0 - Integer Overflow

Title source: rule

Description

A vulnerability was identified in the handling of Bluetooth Low Energy (BLE) fixed channels (such as SMP or ATT). Specifically, an attacker could exploit a flaw that causes the BLE target (i.e., the device under attack) to attempt to disconnect a fixed channel, which is not allowed per the Bluetooth specification. This leads to undefined behavior, including potential assertion failures, crashes, or memory corruption, depending on the BLE stack implementation.

References (1)

[Patch, Vendor Advisory] https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hcc8-3qr7-c9m8

Scores

CVSS v3 7.1

EPSS 0.0002

EPSS Percentile 6.7%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-190

Status published

Products (1)

zephyrproject/zephyr < 4.1.0

Published Sep 19, 2025

Tracked Since Feb 18, 2026