CVE-2026-44634

UNKNOWN 0.0

Stack buffer overflows in SimpleBLE

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

SimpleBLE is a cross-platform library and bindings for Bluetooth Low Energy (BLE). Prior to version 0.14.0, there are multiple stack-based buffer overflow vulnerabilities in SimpleBLE. There is a stack overflow vulnerability in the dongl backend’s Protocol::simpleble_write function (local, caller-controlled input). A stack overflow vulnerability when processing manufacturer-specific data in BLE advertisements (remote, no pairing or connection required). Lastly, a stack overflow vulnerability when processing service data in BLE advertisements (remote, no pairing or connection required). This issue has been patched in version 0.14.0.

CWE	CWE-121 CWE-787
Vendor	simpleble
Product	simpleble
Published	Jun 9, 2026

Stay Ahead of the Next One

Get instant alerts for simpleble simpleble

Be the first to know when new unknown vulnerabilities affecting simpleble simpleble are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

simpleble / simpleble

< 0.14.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/simpleble/simpleble/security/advisories/GHSA-8h89-q8m2-c8fp github.com: https://github.com/simpleble/simpleble/pull/466 github.com: https://github.com/simpleble/simpleble/commit/1501d59d76a4280268372afb1b157bf6caeacba6 github.com: https://github.com/simpleble/simpleble/releases/tag/v0.14.0