{"id":"CVE-2024-47248","details":"Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Apache NimBLE.\n\nSpecially crafted MESH message could result in memory corruption when non-default build configuration is used.\nThis issue affects Apache NimBLE: through 1.7.0.\n\nUsers are recommended to upgrade to version 1.8.0, which fixes the issue.","modified":"2026-04-12T09:38:27.414828Z","published":"2024-11-26T12:15:19.007Z","references":[{"type":"ADVISORY","url":"https://lists.apache.org/thread/z8m7jqh54xybf9kz8q2l3tz92zsj7tmz"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2024/11/26/2"},{"type":"FIX","url":"https://github.com/apache/mynewt-nimble/commit/4f75c0b3b466186beff40e8489870c6cee076aaa"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/apache/mynewt-nimble","events":[{"introduced":"0"},{"fixed":"ca67e3015eec30eb97c853112441082d709e43ba"},{"fixed":"4f75c0b3b466186beff40e8489870c6cee076aaa"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.8.0"}]}}],"versions":["nimble_1_5_0_rc1_tag","nimble_1_5_0_tag","nimble_1_6_0_rc1_tag","nimble_1_6_0_tag","nimble_1_7_0_rc1_tag","nimble_1_7_0_tag"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-47248.json","vanir_signatures":[{"source":"https://github.com/apache/mynewt-nimble/commit/4f75c0b3b466186beff40e8489870c6cee076aaa","signature_version":"v1","digest":{"length":245,"function_hash":"230280845175757567461421694865095037775"},"deprecated":false,"signature_type":"Function","id":"CVE-2024-47248-3d186b5e","target":{"function":"pb_adv_init","file":"nimble/host/mesh/src/pb_adv.c"}},{"source":"https://github.com/apache/mynewt-nimble/commit/4f75c0b3b466186beff40e8489870c6cee076aaa","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["179230251640405652593823843624718322049","208930745748693436423409710197672363026","255694981456333338041418283779508562039","27098335575085465032805748592728744434","179183088004213350825934099371213090724","45849850707538671624957992623793947613","200095944061272487208907264619755914622","205425491690587406867853572341551327786","27794071222454208548413571031235531368","35568718359506840463477933059408578997","137920408056414380907363244931118002200","45627223048483779038732452265560250023","45849850707538671624957992623793947613","200095944061272487208907264619755914622"]},"deprecated":false,"signature_type":"Line","id":"CVE-2024-47248-6d763609","target":{"file":"nimble/host/mesh/src/pb_adv.c"}},{"source":"https://github.com/apache/mynewt-nimble/commit/4f75c0b3b466186beff40e8489870c6cee076aaa","signature_version":"v1","digest":{"length":543,"function_hash":"275173413536812125388486536657466610588"},"deprecated":false,"signature_type":"Function","id":"CVE-2024-47248-9cddc0ee","target":{"function":"reset_adv_link","file":"nimble/host/mesh/src/pb_adv.c"}},{"source":"https://github.com/apache/mynewt-nimble/commit/4f75c0b3b466186beff40e8489870c6cee076aaa","signature_version":"v1","digest":{"length":1499,"function_hash":"126795949624981165867665649811877056607"},"deprecated":false,"signature_type":"Function","id":"CVE-2024-47248-c9dfece9","target":{"function":"gen_prov_cont","file":"nimble/host/mesh/src/pb_adv.c"}}],"vanir_signatures_modified":"2026-04-12T09:38:27Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}]}