VDE-2025-089
Last update
10.12.2025 08:00
Published at
10.12.2025 08:00
Vendor(s)
Harman International
External ID
HBSA-2025-0002
CSAF Document
Summary
The BLE controller in certain consumer products fails to properly validate the channel map field in connection requests, enabling attackers within radio range to cause a denial of service through a specially crafted packet.
Impact
Sending an invalid connection request to a JBL Bluetooth Speaker causes it to crash or enter a deadlock state, halting music playback and disconnecting existing connections. Recovery requires manual reboot by the user, as reconnection is impossible in this state.
Affected Product(s)
| Model no. | Product name | Affected versions |
|---|---|---|
| JBL Boombox 2 | JBL Boombox 2 | |
| JBL Boombox 3 | JBL Boombox 3 | |
| JBL Flip 5 | JBL Flip 5 | |
| JBL Flip 6 | JBL Flip 6 | |
| JBL Pulse 4 | JBL Pulse 4 | |
| JBL Pulse 5 | JBL Pulse 5 | |
| JBL Xtreme 3 | JBL Xtreme 3 |
Vulnerabilities
Expand / Collapse all
Published
10.12.2025 11:59
Severity
Weakness
Improper Validation of Specified Type of Input (CWE-1287)
References
Remediation
No remediation is available as of now. A manual reboot of the device by the user is required to restore functionality.
Acknowledgments
Harman International thanks the following parties for their efforts:
- CERT@VDE for coordinating (see https://certvde.com )
- Mattar Bernhard from Hummus Sec for reporting
Revision History
| Version | Date | Summary |
|---|---|---|
| 1.0.0 | 10.12.2025 08:00 | Initial version |