CVE-2026-44634
Received Received - Intake
Stack-based Buffer Overflow in SimpleBLE Library

Publication date: 2026-06-10

Last updated on: 2026-06-10

Assigner: GitHub, Inc.

Description
SimpleBLE is a cross-platform library and bindings for Bluetooth Low Energy (BLE). Prior to version 0.14.0, there are multiple stack-based buffer overflow vulnerabilities in SimpleBLE. There is a stack overflow vulnerability in the dongl backend’s Protocol::simpleble_write function (local, caller-controlled input). A stack overflow vulnerability when processing manufacturer-specific data in BLE advertisements (remote, no pairing or connection required). Lastly, a stack overflow vulnerability when processing service data in BLE advertisements (remote, no pairing or connection required). This issue has been patched in version 0.14.0.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-10
Last Modified
2026-06-10
Generated
2026-06-10
AI Q&A
2026-06-10
EPSS Evaluated
N/A
NVD
CVE-2026-44634
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
simpleble simpleble to 0.14.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-44634 involves multiple stack-based buffer overflow vulnerabilities in the SimpleBLE library versions prior to 0.14.0.

There are three main vulnerabilities: one in the dongl backend's Protocol::simpleble_write function caused by caller-controlled input, and two others triggered remotely when processing manufacturer-specific data and service data in Bluetooth Low Energy (BLE) advertisements.

The remote vulnerabilities can be exploited by any BLE device within range without requiring pairing or authentication, due to insufficient bounds checking on variable-length data in BLE packets, allowing fixed-size stack buffers to be overflowed.

These vulnerabilities can lead to arbitrary code execution or denial of service.

The issues were fixed in SimpleBLE version 0.14.0.

Impact Analysis

The vulnerabilities can allow attackers to execute arbitrary code or cause denial of service on systems using vulnerable versions of SimpleBLE.

Specifically, remote attackers can exploit the stack overflows in BLE advertisement processing without needing to pair or connect to the device, making it easier to attack.

This could lead to system crashes, instability, or unauthorized control over affected devices.

The dongl backend vulnerability has limited real-world impact as it affects an unreleased prototype.

Users are advised to upgrade to SimpleBLE version 0.14.0 or later to mitigate these risks.

Detection Guidance

The vulnerabilities in SimpleBLE involve stack-based buffer overflows triggered by processing manufacturer-specific data and service data in BLE advertisements, as well as a local overflow in the dongl backend's simpleble_write function. Detection would involve monitoring BLE advertisement packets for unusually large or malformed manufacturer-specific or service data fields that could trigger these overflows.

Since the vulnerabilities can be triggered remotely without pairing or connection, scanning BLE traffic with tools that can capture and analyze BLE advertisement data is recommended.

Specific commands are not provided in the available resources, but typical approaches include using BLE scanning tools such as 'hcitool lescan' or 'bluetoothctl' on Linux to capture BLE advertisements, followed by analysis scripts or tools to check for oversized manufacturer or service data fields.

For the dongl backend local vulnerability, detection would require auditing local calls to the simpleble_write function for input sizes exceeding safe limits, but no direct commands or detection methods are described.

Mitigation Strategies

The primary and recommended mitigation step is to upgrade SimpleBLE to version 0.14.0 or later, where these vulnerabilities have been fixed.

There are no recommended workarounds for production use, as the vulnerabilities arise from insufficient bounds checking in handling BLE data.

Upgrading ensures that the stack buffer overflows in the dongl backend's simpleble_write function and in processing manufacturer-specific and service data in BLE advertisements are properly patched.

Compliance Impact

The provided information does not specify any direct impact of the CVE-2026-44634 vulnerabilities on compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-44634. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart