The Bluetooth Classic implementation on JBL TUNE500BT devices does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown a device by flooding the target device with LMP Feature Response data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tune500bt_firmware | Jbl | - (including) | - (including) |