Primary

Context

BlueKitchen BTstack Out-of-Bounds Read Vulnerability in AVRCP Browsing Target GET_FOLDER_ITEMS Handler

Vulnerability

A out-of-bounds read vulnerability has been identified in BlueKitchen BTstack versions prior to 1.8.1. The issue arises in the AVRCP Browsing Target GET_FOLDER_ITEMS handler, which does not properly validate packet boundaries or attribute count data. This vulnerability can be exploited by an attacker with a paired Bluetooth Classic connection, taking advantage of inadequate bounds checking on the attr_id parameter. Exploitation can lead to crashes and corruption of the attribute bitmap state.

Impact

Exploitation of this vulnerability causes crashes and disrupts the attribute bitmap state, leading to undefined behavior.

Remediation

Users can upgrade to BlueKitchen BTstack version 1.8.1 or later to address this vulnerability.

Added: Mar 30, 2026, 2:20 PM

Updated: Mar 30, 2026, 2:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

3.5

remediation

0.0

relevance

4.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

3.5

remediation

0.0

relevance

4.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

BlueKitchen BTstack Out-of-Bounds Read Vulnerability in AVRCP Browsing Target GET_FOLDER_ITEMS Handler

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating