A vulnerability classified as critical was found in zephyrproject-rtos Zephyr up to 3.7. Affected by this vulnerability is the function olcp_ind_handler of the file zephyr/subsys/bluetooth/services/ots/ots_client.c. The manipulation leads to heap-based buffer overflow.

This vulnerability is known as CVE-2024-8798. The attack can be launched remotely. There is no exploit available.