Close
Security Bulletin: BLE Security Vulnerabilities
CVE-2019-11516 and CVE-2019-13916
Introduction
Cypress has reviewed and analyzed recent reports on BLE security vulnerabilities outlined in CVE-2019-11516 and CVE-2019-13916. Below is the status update:
Part Number |
Vulnerability |
Fixed in Release |
CYW20735B1 CYW43012C0 |
CVE-2019-11516 |
BT SDK2.4 |
CVE-2019-13916 |
BT SDK2.4 |
|
CYW20706A2 CYW20819A1 CYW20820A1 CYW20719B2 |
CVE-2019-13916 |
BT-SDK2.5 |
Other Cypress Devices
Customers using devices not listed above or requiring further assistance can receive updates by creating a support case through our secure support portal or by contacting their Cypress representative.
The latest BT SDK releases are available for download here. Please contact us directly for consultation and/or patch adoption support.
If you believe you have identified a vulnerability in any Cypress product, please visit our security response page and email the Product Security Incident Response Team (PSIRT) at psirt@cypress.com.