Airoha Bluetooth Audio SDK Permission Bypass Vulnerability Allowing Unauthorized Access to Critical RACE Protocol Data

Vulnerability

A permission bypass vulnerability has been identified in the Airoha Bluetooth audio SDK, specifically in versions through 5.5.0, as well as in the Airoha AB1561x/AB1562x/AB1563x SDK versions through 3.3.1. This vulnerability allows unauthorized access to critical data of the RACE protocol via Bluetooth Low Energy (LE) Generic Attribute Profile (GATT) service. The issue could lead to remote escalation of privileges without requiring additional execution rights or user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized access to critical RACE protocol data, allowing for remote escalation of privileges on the affected device.

Added: Aug 4, 2025, 7:20 AM

Updated: Aug 4, 2025, 7:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Airoha Bluetooth Audio SDK Permission Bypass Vulnerability Allowing Unauthorized Access to Critical RACE Protocol Data

Vulnerability

Impact

Affected Products

Airoha Bluetooth audio SDK

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating