Description
Bluetooth ACPI Drivers provided by Dynabook Inc. contain a stack-based buffer overflow vulnerability. An attacker may execute arbitrary code by modifying certain registry values.
Published: 2026-04-13
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Patch Immediately
AI Analysis

Impact

The Bluetooth ACPI Drivers supplied by Dynabook contain a stack‑based buffer overflow that is triggered by modifying specific registry values. Improper bounds checking during registry processing allows an attacker to overflow the stack, enabling arbitrary code execution. This flaw jeopardises the confidentiality, integrity, and availability of the affected device by allowing execution of attacker‑controlled code.

Affected Systems

The vulnerability affects Dynabook Inc. products DRFEC.SYS and TOSRFEC.SYS. No specific version ranges are listed, so any device running these drivers that has not applied an available update is potentially vulnerable.

Risk and Exploitability

With a CVSS base score of 8.4 the issue is classified as High severity. EPSS information is not available and the vulnerability is not listed in the CISA KEV catalog. Exploitation requires the ability to alter registry settings, which may be achievable locally or via remote services with registry modification capabilities. The absence of publicly known exploits means the risk depends on an attacker’s ability to change those registry values, but the high CVSS score indicates a need for prompt attention.

Generated by OpenCVE AI on April 13, 2026 at 06:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest driver or firmware update released by Dynabook or Sharp that addresses the Bluetooth ACPI buffer overflow.
  • Ensure that registry values for the Bluetooth ACPI driver cannot be modified by non‑privileged users or untrusted applications.
  • If an update is unavailable, temporarily disable the Bluetooth ACPI driver or turn off Bluetooth functionality until a fix is applied.
  • Continuously monitor system logs for unexpected registry changes or anomalous driver activity to detect potential exploitation attempts.

Generated by OpenCVE AI on April 13, 2026 at 06:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 13 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 13 Apr 2026 14:30:00 +0000

Type Values Removed Values Added
Title Bluetooth ACPI Driver Buffer Overflow Allows Code Execution Through Modified Registry Values

Mon, 13 Apr 2026 13:00:00 +0000

Type Values Removed Values Added
First Time appeared Dynabook
Dynabook drfec.sys
Dynabook tosrfec.sys
Vendors & Products Dynabook
Dynabook drfec.sys
Dynabook tosrfec.sys

Mon, 13 Apr 2026 05:15:00 +0000

Type Values Removed Values Added
Description Bluetooth ACPI Drivers provided by Dynabook Inc. contain a stack-based buffer overflow vulnerability. An attacker may execute arbitrary code by modifying certain registry values.
Weaknesses CWE-121
References
Metrics cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Dynabook Drfec.sys Tosrfec.sys
cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published:

Updated: 2026-04-13T15:00:22.042Z

Reserved: 2026-04-03T08:21:59.910Z

Link: CVE-2026-35553

cve-icon Vulnrichment

Updated: 2026-04-13T15:00:18.138Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-13T05:16:04.693

Modified: 2026-04-13T15:01:43.663

Link: CVE-2026-35553

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-13T12:53:20Z

Weaknesses