Lucene search
K

1728 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.15 views

Unity Linux 20.1070e Security Update: bluez (UTSA-2026-016764)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016764 advisory. BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdpcstateallocbuf which allocates memory which will always be hung in t...

6.5CVSS6.7AI score0.01101EPSS
Exploits1References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in bluez

The bluetoothd function from the bluez library incorrectly preserves the discoverable status of adapters when a device is powered down, and restores that status when the device is powered on again. If a device is in the discoverable state while powered down, it will remain discoverable when the...

6.5CVSS6.7AI score0.00795EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in bluez

In BlueZ before version 5.55, a double-free error was detected in the gatttool disconnectcb routine from the shared/att.c file. A remote attacker could potentially cause a denial of service or code execution during service discovery, due to the redundant disconnect MGMT event...

8.6CVSS8AI score0.04242EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux, BlueZ

In the Bluetooth Core Specification 2.1 through 5.2, Bluetooth LE and BR/EDR secure pairing mechanisms may allow a nearby man-in-the-middle attacker to identify the Passkey used during pairing in the Passkey authentication procedure by reflecting the public key and the authentication evidence of...

4.3CVSS6.9AI score0.00872EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in bluez

BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User interaction is required to exploit this vulnerability, as the target must connect...

8CVSS7.7AI score0.01493EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in bluez

Bluetooth HID Hosts in BlueZ may allow an unauthenticated peripheral role HID device to initiate and establish an encrypted connection, and to accept HID keyboard reports. This could potentially allow the injection of HID messages when no user interaction has occurred in the Central role, thereby...

6.3CVSS6.9AI score0.07879EPSS
Exploits8References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in bluez

A heap overflow vulnerability was discovered in bluez in versions prior to 5.63. An attacker with local network access could execute specially crafted files, causing the application to stop working or crash, resulting in a denial of service...

8.8CVSS6.8AI score0.01808EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in bluez

BlueZ is a Bluetooth protocol stack for Linux. In affected versions, there is a vulnerability in sdpcstateallocbuf, which allocates memory that will always remain locked in the singly linked list of cstates and will not be freed. This will lead to a memory leak over time. The allocated data can b...

6.5CVSS6.6AI score0.01101EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in bluez

Before version 5.59 of BlueZ, physically nearby attackers could obtain sensitive information because the parameters in the profiles/audio/avrcp.c files were not validated for their length...

8.8CVSS6.5AI score0.00657EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in bluez

The clifeatreadcb function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading...

3.3CVSS6.3AI score0.0045EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in bluez

A issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free condition can occur when a client disconnects during D-Bus processing of a WriteValue call...

9.1CVSS6.7AI score0.01544EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux, BlueZ

Improper access control in BlueZ may allow a authenticated user to potentially enable information disclosure through adjacent access...

5.7CVSS6.7AI score0.00827EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in bluez

BlueZ before version 5.59 allows physically nearby attackers to cause a denial of service, as malformed and invalid capabilities can be processed in the profiles/audio/avdtp.c file...

8.8CVSS6.5AI score0.00611EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.10, and Linux 5.15

BlueZ HID over GATT Profile: Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected BlueZ installations. Authentication is not required to exploit this vulnerability. The specific flaw lies in the...

8.8CVSS7.4AI score0.02033EPSS
Exploits0References2
OSV
OSV
added 2026/05/05 5:54 p.m.5 views

ROOT-OS-DEBIAN-12-CVE-2023-51589 CVE-2023-51589 in rootio-bluez - Patched by Root

Root has patched CVE-2023-51589 in the rootio-bluez package for Root:Debian:12. Multiple fixed versions available...

5.7CVSS5.4AI score0.00808EPSS
Exploits0
OSV
OSV
added 2026/05/05 5:54 p.m.4 views

ROOT-OS-DEBIAN-12-CVE-2016-9918 CVE-2016-9918 in rootio-bluez - Patched by Root

Root has patched CVE-2016-9918 in the rootio-bluez package for Root:Debian:12. Multiple fixed versions available...

7.5CVSS5.4AI score0.03479EPSS
Exploits1
OSV
OSV
added 2026/05/05 5:54 p.m.4 views

ROOT-OS-DEBIAN-12-CVE-2016-9803 CVE-2016-9803 in rootio-bluez - Patched by Root

Root has patched CVE-2016-9803 in the rootio-bluez package for Root:Debian:12. Multiple fixed versions available...

5.3CVSS6.4AI score0.02473EPSS
Exploits1
OSV
OSV
added 2026/05/05 5:54 p.m.5 views

ROOT-OS-DEBIAN-12-CVE-2016-9800 CVE-2016-9800 in rootio-bluez - Patched by Root

Root has patched CVE-2016-9800 in the rootio-bluez package for Root:Debian:12. Multiple fixed versions available...

5.3CVSS6.4AI score0.02843EPSS
Exploits1
OSV
OSV
added 2026/05/05 5:54 p.m.8 views

ROOT-OS-DEBIAN-12-CVE-2016-9804 CVE-2016-9804 in rootio-bluez - Patched by Root

Root has patched CVE-2016-9804 in the rootio-bluez package for Root:Debian:12. Multiple fixed versions available...

5.3CVSS6.7AI score0.02523EPSS
Exploits1
OSV
OSV
added 2026/05/05 5:54 p.m.4 views

ROOT-OS-DEBIAN-12-CVE-2016-9797 CVE-2016-9797 in rootio-bluez - Patched by Root

Root has patched CVE-2016-9797 in the rootio-bluez package for Root:Debian:12. Multiple fixed versions available...

5.3CVSS6.4AI score0.03723EPSS
Exploits1
Rows per page
Query Builder