Primary

Context

BlueKitchen BTstack Out-of-Bounds Read Vulnerability in AVRCP Controller Handlers

Vulnerability

An out-of-bounds read vulnerability has been identified in BlueKitchen BTstack versions prior to 1.8.1. This vulnerability exists in the AVRCP Controller GET_PLAYER_APPLICATION_SETTING_ATTRIBUTE_TEXT and GET_PLAYER_APPLICATION_SETTING_VALUE_TEXT handlers. It allows nearby attackers to read beyond packet boundaries by establishing a paired Bluetooth Classic connection and sending specially crafted VENDOR_DEPENDENT responses. This exploitation can lead to information disclosure and potential crashes on affected devices.

Impact

Exploitation of this vulnerability causes out-of-bounds reads, which can result in information disclosure and potential crashes on the affected device.

Remediation

Users can upgrade to BlueKitchen BTstack version 1.8.1 or later to address this vulnerability.

Added: Mar 30, 2026, 2:20 PM

Updated: Mar 30, 2026, 2:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

3.5

remediation

0.0

relevance

4.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

3.5

remediation

0.0

relevance

4.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

BlueKitchen BTstack Out-of-Bounds Read Vulnerability in AVRCP Controller Handlers

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating