4 known vulnerabilities · sorted by CVSS score
Memory corruption due to global buffer overflow when a test command uses an invalid payload type.
Transient DOS while parsing the EPTM test control message to get the test pattern.
Transient DOS may occur when multi-profile concurrency arises with QHS enabled.
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.