Security Advisory

CVE-2025-53470

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-10 09:46:35

Last updated 2026-01-12 19:12:52

Assigner apache

State PUBLISHED

Description

Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could lead to invalid memory read in H4 driver. This issue affects Apache NimBLE: through 1.8. This issue requires a broken or bogus Bluetooth controller and thus severity is considered low. Users are recommended to upgrade to version 1.9, which fixes the issue.

← Browse all CVEs View on cve.org ↗