cvedb.io
CVE-2022-26528
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2022-08-30T05:15:07.847 · Last modified 2026-06-17T04:35:21.490

Summary

Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for the length of segmented packets’ shift parameter. An unauthenticated attacker in the adjacent network can exploit this vulnerability to cause buffer overflow and disrupt service.

Affected products

realtek — bluetooth_mesh_software_development_kit

Does this affect you?

Add your gear to cvedb and we'll alert you only when realtek ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.