CVEs-PoC/2020/CVE-2020-10061.md

### [CVE-2020-10061](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10061)
![](https://img.shields.io/static/v1?label=Product&message=zephyr&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3E%3D%202.2.0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-119%20Improper%20Restriction%20of%20Operations%20within%20the%20Bounds%20of%20a%20Memory%20Buffer&color=brighgreen)

### Description

Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in memory corruption. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions.

### POC

#### Reference
- https://github.com/zephyrproject-rtos/zephyr/pull/23091
- https://zephyrprojectsec.atlassian.net/browse/ZEPSEC-75

#### Github
- https://github.com/JeffroMF/awesome-bluetooth-security321
- https://github.com/Matheus-Garbelini/sweyntooth_bluetooth_low_energy_attacks
- https://github.com/engn33r/awesome-bluetooth-security