CVE-2024-23963: Alpine Halo9 Stack-based Buffer Overflow
Description
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine Halo9 devices. An attacker must first obtain the ability to pair a malicious Bluetooth device with the target system in order to exploit this vulnerability.
The specific flaw exists within the PBAP_DecodeVCARD function. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root.
Classification
CVE ID: CVE-2024-23963
Affected Products
Vendor: Alpine
Product: Halo9
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.07% (probability of being exploited)
EPSS Percentile: 31.61% (scored less or equal to compared to others)
EPSS Date: 2025-03-01 (when was this score calculated)