15 matches found
ROS-20260324-73-0017
A vulnerability in the discoveryinit function in the include/net/bluetooth/hcicore.h module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Android
Bluetooth/BLE Penetration Testing Toolkit for Automotive IVI Sys...
MiracleLinux 8 : bluez-5.50-3.el8 (AXSA:2020-298:02)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-298:02 advisory. bluez: failure in disabling Bluetooth discoverability in certain cases may lead to the unauthorized pairing of Bluetooth devices CVE-2018-10910 Tenable has...
EUVD-2022-25386
Malicious code in bioql PyPI...
EUVD-2024-43263
Malicious code in bioql PyPI...
CVE-2025-38593 Bluetooth: hci_sync: fix double free in 'hci_discovery_filter_clear()'
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix double free in 'hcidiscoveryfilterclear' Function 'hcidiscoveryfilterclear' frees 'uuids' array and then sets it to NULL. There is a tiny chance of the following race: 'hcicmdsyncwork'...
CVE-2024-49412
Improper input validation in Settings prior to SMR Dec-2024 Release 1 allows local attackers to broadcast signal for discovering Bluetooth on Galaxy Watch...
SAMSUNG mobile 安全漏洞
SAMSUNG mobile is a cell phone from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG mobile prior to SMR-Dec-2024 Release 1, which stems from improper input validation and allows a local attacker to broadcast a signal to discover Bluetooth on a Galaxy Watch...
PT-2024-33524 · Samsung · Galaxy Watch
Name of the Vulnerable Software and Affected Versions: Settings versions prior to SMR Dec-2024 Release 1 Description: The issue is related to improper input validation in Settings, which allows local attackers to broadcast a signal for discovering Bluetooth on Galaxy Watch. This can be exploited ...
CVE-2022-20126
In setScanMode of AdapterService.java, there is a possible way to enable Bluetooth discovery mode without user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product...
CVE-2022-20126
In setScanMode of AdapterService.java, there is a possible way to enable Bluetooth discovery mode without user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product...
PT-2022-14368 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-12L Description: The issue is related to a missing permission check in the setScanMode function of AdapterService.java, which could allow enabling Bluetooth discovery mode without user interaction...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android has a security vulnerability where an eavesdropping vector may exist in onCreate of RequestPermissionActivity.java due to insecure default values. This could lead to a local...
[Harald scan] Bluetooth discovery scanning
Harald Scan is able to determine Major and Minor device class of device, as well as attempt to resolve the device's MAC address to the largest known Bluetooth MAC address Vendor list. If you are running Harald Scan and see a entry with 'Unknown' in the vendor column pleaseemail me the file which ...
btftp.txt
/ - Tools you will probably need: - http://www.digitalmunition.com/setbd-affix.c - KF is one bad mofo /str0ke Remote Nokia Affix btftp client exploit by kflistsatsecnetopsdotcom threat: btftp Affix version: Affix 2.1.1 Wellcome to OBEX ftp. Type ? for help. Mode: Bluetooth SDP: yes ftp open...