Apache Software Foundation Apache Mynewt Nimble vulnerabilities

CVE-2025-62235 [HIGH] CWE-290 CVE-2025-62235: Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Secur Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Security Request could lead to removal of original bond and re-bond with impostor. This issue affects Apache NimBLE: through 1.8.0. Users are recommended to upgrade to version 1.9.0, which fixes the issue.

CVE-2025-53477 [HIGH] CWE-476 CVE-2025-53477: NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection compl NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.8.0. Users are recommen

CVE-2025-52435 [HIGH] CWE-5 CVE-2025-52435: J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE. Imprope J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE. Improper handling of Pause Encryption procedure on Link Layer results in a previously encrypted connection being left in un-encrypted state allowing an eavesdropper to observe the remainder of the exchange. This issue affects Apache NimBLE: through <= 1.8.0. Us

CVE-2025-53470 [LOW] CWE-125 CVE-2025-53470: Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could lead to invalid memory read in H4 driver. This issue affects Apache NimBLE: through 1.8. This issue requires a broken or bogus Bluetooth controller and thus severity is considered low. Users are recommended to upgrade to version 1.9, which fixes the iss