CVE-2024-20147

Summary

CVE-2024-201147 exposes a remote denial-of-service vulnerability in Bluetooth Firmware. This issue arises from improper exception handling, allowing an attacker to trigger a reachable assertion. No additional execution privileges or user interaction are required for exploitation. Patch IDs WCNCR00389046 (for MT79XX chipsets) and ALPS09136501 (for MT2737, MT3603, MT6XXX, and MT8XXX chipsets) are available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.