Feature Pages Execution

Description

Feature Pages Execution

Risk Assesment: 8.8

CWE

CVE

28139

Attack Surfaces

Controller Implementation (MITRE EMB3D PID-11)

Pairing

MagicPairing

Feature Exchange

Attack Vectors

RCE (MITRE EMB3D TID-310)

DoS (MITRE EMB3D TID-404)

Defenses

Bounds check, Check for out-of-bounds upon receiving LMP_feature_response_ext packet