Bluetooth Blues: Unmasking CVE 2023-52709-The TI BLE5-Stack Attack
Kevin Mitchell
DEF CON 32 Creator Stage · Day 1 · Creator Stage
In this compelling talk at DEF CON 32, Kevin Mitchell, a Senior Automotive Security Tester at Etos, unveiled a critical **denial-of-service (DoS)** vulnerability, designated as **CVE-2023-52709**, affecting the **Texas Instruments (TI) BLE5-Stack**. This vulnerability has significant implications for modern automotive systems, particularly those implementing **"phone-as-key" (PaaK)** functionalities, which rely heavily on Bluetooth Low Energy (BLE) technology for keyless entry and vehicle operation. Mitchell's presentation detailed the discovery, reproduction challenges, technical specifics, and the broader impact of this flaw on the automotive industry.