CVE-2020-25661

🗓️ 05 Nov 2020 20:04:04Reported by redhatType

A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on the system by sending a specially crafted L2CAP packet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability

Reporter	Title	Published	Views	Family All 30
Tenable Nessus	CentOS 8 : kernel (CESA-2020:4685)	1 Feb 202100:00	–	nessus
Tenable Nessus	MiracleLinux 8 : kernel-4.18.0-240.15.1.el8 (AXSA:2021-1528:05)	20 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 8 : kernel (ELSA-2020-4685)	14 Nov 202000:00	–	nessus
Tenable Nessus	RHEL 8 : kernel (RHSA-2020:4685)	4 Nov 202000:00	–	nessus
Tenable Nessus	RHEL 8 : kernel-rt (RHSA-2020:4686)	4 Nov 202000:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2020-25661	11 Aug 202500:00	–	nessus
Circl	CVE-2020-25661	6 Nov 202000:50	–	circl
CNVD	Unspecified vulnerability in Linux kernel (CNVD-2020-65148)	6 Nov 202000:00	–	cnvd
Cvelist	CVE-2020-25661	5 Nov 202020:04	–	cvelist
Debian CVE	CVE-2020-25661	5 Nov 202020:04	–	debiancve

NVD

Vulners

Node

redhat enterprise_linuxMatch8.3

[
  {
    "product": "kernel",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "kernel-4.18.0-240.el8"
      }
    ]
  }
]

Source	Link
access	www.access.redhat.com/security/cve/CVE-2020-12351
access	www.access.redhat.com/security/vulnerabilities/BleedingTooth
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

21 Nov 2024 05:18Current

8.6High risk

Vulners AI Score8.6

CVSS 28.3

CVSS 3.17.5 - 8.8

EPSS0.0164

CWE-843