Lucene search
K

78 matches found

Cvelist
Cvelist
added 2025/09/24 3:33 p.m.9 views

CVE-2025-47318 Buffer Over-read in BT Controller

Transient DOS while parsing the EPTM test control message to get the test pattern...

7.5CVSS0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/24 3:33 p.m.11 views

CVE-2025-47317 Buffer Over-read in BT Controller

Memory corruption due to global buffer overflow when a test command uses an invalid payload type...

7.8CVSS0.00082EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/24 3:33 p.m.4 views

CVE-2025-47317 Buffer Over-read in BT Controller

Memory corruption due to global buffer overflow when a test command uses an invalid payload type...

7.8CVSS7.2AI score0.00082EPSS
Exploits0References1
CVE
CVE
added 2025/09/24 3:33 p.m.20 views

CVE-2025-47317

CVE-2025-47317 is described in the provided sources as memory corruption due to a global buffer overflow when a test command uses an invalid payload type. Connected documents identify Qualcomm-related components and reference a Qualcomm security bulletin; the exact affected product/version detail...

7.8CVSS7.2AI score0.00082EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/09/17 3:15 p.m.7 views

CVE-2022-50374

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcildisc,serdev: check percpuinitrwsem failure syzbot is reporting NULL pointer dereference at hciuartttyclose 1, for rcusyncenter is called without rcusyncinit due to hciuartttyopen ignoring percpuinitrwsem failure...

5.5CVSS0.00191EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/08/16 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible crash of the nintendo bluetooth controller during hang recovery, which could lead to a kernel pan...

5.5CVSS6.4AI score0.00135EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2021-32399

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/bluetooth/hcirequest.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller. CVE-2021-32399 Note that Nessus relies on...

7CVSS6.7AI score0.00691EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:44 a.m.5 views

CVE-2024-51569

Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI Number Of Completed Packets could lead to out-of-bound access when parsing HCI event and invalid read from HCI transport memory. This issue requires broken or bogus Bluetooth controller and thus severity is...

7.5CVSS6.8AI score0.01155EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:37 a.m.15 views

CVE-2023-28587

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level...

7.8CVSS7.4AI score0.00157EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:4 a.m.8 views

CVE-2023-2234

Union variant confusion allows any malicious BT controller to execute arbitrary code on the Zephyr host...

8.8CVSS7.9AI score0.00432EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:53 p.m.7 views

CVE-2021-35093

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore...

6.5CVSS7.1AI score0.00248EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/14 12:0 a.m.5 views

The vulnerability of the BT Controller component of Qualcomm’s embedded software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the BT Controller component in the microprogramming software of Qualcomm’s integrated chips is related to data encryption errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

8.5CVSS5.5AI score0.00147EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/06 3:18 a.m.16 views

CVE-2021-35129

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

7.8CVSS7.5AI score0.00159EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.7 views

Vulnerability of Bluetooth/HCI components in Linux operating systems, allowing attackers to cause service failures

The vulnerability of the mm component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.1CVSS6.7AI score0.00226EPSS
Exploits0References7Affected Software4
NVD
NVD
added 2024/11/26 12:15 p.m.14 views

CVE-2024-51569

Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI Number Of Completed Packets could lead to out-of-bound access when parsing HCI event and invalid read from HCI transport memory. This issue requires broken or bogus Bluetooth controller and thus severity is...

7.5CVSS0.01155EPSS
Exploits0References3
OSV
OSV
added 2024/11/26 12:15 p.m.5 views

CVE-2024-51569

Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI Number Of Completed Packets could lead to out-of-bound access when parsing HCI event and invalid read from HCI transport memory. This issue requires broken or bogus Bluetooth controller and thus severity is...

7.5CVSS6.8AI score
Exploits0References3
NVD
NVD
added 2024/11/26 12:15 p.m.18 views

CVE-2024-47249

Improper Validation of Array Index vulnerability in Apache NimBLE. Lack of input validation for HCI events from controller could result in out-of-bound memory corruption and crash. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects...

5CVSS0.00597EPSS
Exploits0References3
OSV
OSV
added 2024/11/26 12:15 p.m.7 views

CVE-2024-47250

Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI advertising report could lead to out-of-bound access when parsing HCI event and thus bogus GAP 'device found' events being sent. This issue requires broken or bogus Bluetooth controller and thus severity is...

5CVSS6.8AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/11/26 11:17 a.m.13 views

CVE-2024-51569 Apache NimBLE: Lack of input sanitization leading to out-of-bound reads in Number of Completed Packets HCI event handler

Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI Number Of Completed Packets could lead to out-of-bound access when parsing HCI event and invalid read from HCI transport memory. This issue requires broken or bogus Bluetooth controller and thus severity is...

7.1AI score0.01155EPSS
Exploits0References2
CVE
CVE
added 2024/11/26 11:17 a.m.73 views

CVE-2024-51569

CVE-2024-51569 affects Apache NimBLE (through 1.7.0). The root cause is missing validation of HCI Number Of Completed Packets, leading to an out-of-bounds read while parsing HCI events and reading from HCI transport memory. The issue requires a broken/bogus Bluetooth controller to trigger the fau...

7.5CVSS6.5AI score0.01155EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder