CVE-2026-28527 | BlueKitchen BTstack up to 1.8.0 AVRCP Controller out-of-bounds

Inserito da Angelo Barbosa | Mar 30, 2026 | CVE

A vulnerability was found in BlueKitchen BTstack up to 1.8.0. It has been classified as problematic. This affects the function GET_PLAYER_APPLICATION_SETTING_ATTRIBUTE_TEXT/GET_PLAYER_APPLICATION_SETTING_VALUE_TEXT of the component AVRCP Controller. The manipulation leads to out-of-bounds read.

This vulnerability is documented as CVE-2026-28527. The attack requires being on the local network. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-28527 | BlueKitchen BTstack up to 1.8.0 AVRCP Controller out-of-bounds

Post correlati

CVE-2024-0121 | NVIDIA GPU/vGPU/Cloud Gaming prior 16.8/17.4 on Windows User Mode Layer out-of-bounds

CVE-2024-47211 | OpenStack Ironic up to 21.4.3/23.0.2/24.1.2/26.0.x URL image_source stack-based overflow

CVE-2024-42768 | Kashipara Hotel Management System 1.0 /admin/delete_room.php cross-site request forgery

CVE-2024-45717 | SolarWinds Platform up to 2024.4 Search/Node Information Section cross site scripting