CVE-2024-6137 | zephyrproject-rtos Zephyr up to 3.6 BT get_att_search_list out-of-bounds (GHSA-pm38-7g85-cf4f)
A vulnerability described as critical has been identified in zephyrproject-rtos Zephyr up to 3.6. The affected element is the function get_att_search_list of the component BT. Executing manipulation can lead to out-of-bounds read.
This vulnerability is tracked as CVE-2024-6137. The attack is only possible within the local network. No exploit exists.