Lucene search
K

391 matches found

CNNVD
CNNVD
added 2026/06/09 12:0 a.m.14 views

Microsoft Windows Bluetooth Service 资源管理错误漏洞

The Microsoft Windows Bluetooth Service is a Bluetooth driver provided by the American company Microsoft. The Microsoft Windows Bluetooth Service has a resource management vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are...

7.8CVSS5.4AI score0.00286EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.38 views

CVE-2026-46186 Bluetooth: virtio_bt: validate rx pkt_type header length

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: virtiobt: validate rx pkttype header length virtbtrxhandle reads the leading pkttype byte from the RX skb and forwards the remainder to hcirecvframe for every event/ACL/SCO/ISO type, without checking that the remaining...

0.00123EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

A use-after-free flaw was discovered in btsdioremove in the drivers\bluetooth\btsdio.c file within the Linux kernel. In this flaw, calling btsdioremove with an unfinished job may lead to a race condition, resulting in a User Account Fault UAF on HDev devices...

7.1CVSS6.6AI score0.00387EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: For qca devices, a bug was fixed where a NULL pointer dereferencing occurred in cases where no SERVICE mode was set. Qualcomm ROME controllers can be registered through the Bluetooth interface. In this case, the HCI...

5.5CVSS6.3AI score0.00234EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

A race condition was detected in the Bluetooth device driver of the Linux kernel’s min,maxkeysizeset function. This can lead to a null pointer dereferencing issue, potentially causing a kernel panic or a denial-of-service attack...

5.3CVSS6.7AI score0.00805EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel before version 5.16.3, the file drivers/bluetooth/hciqca.c misinterprets the return value of devmgpiodgetindexoptional. It expects the return value to be NULL in the error case, but in reality, it is an error pointer...

5.5CVSS6.6AI score0.00246EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

A race condition was detected in the Linux kernel’s net/bluetooth device driver, specifically in the conninfomin,maxageset function. This can lead to an integrity overflow issue, potentially causing abnormal Bluetooth connections or denial of service...

6.8CVSS6.6AI score0.00317EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/04/23 8:5 a.m.7 views

Bluetooth: btusb: clamp SCO altsetting table indices

...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/22 7:38 p.m.5 views

CVE-2026-31500

A flaw was found in the Linux kernel's Bluetooth subsystem. A race condition exists in the Intel Bluetooth driver, where two functions can access the same memory concurrently without proper synchronization. This can lead to a use-after-free vulnerability, allowing a local attacker to potentially...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 2:16 p.m.24 views

CVE-2026-31500

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: serialize btintelhwerror with hcireqsynclock btintelhwerror issues two hcicmdsync calls HCIOPRESET and Intel exception-info retrieval without holding hcireqsynclock. This lets it race against hcidevdoclose -...

7.8CVSS0.00126EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.30 views

CVE-2026-31497 Bluetooth: btusb: clamp SCO altsetting table indices

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: clamp SCO altsetting table indices btusbwork maps the number of active SCO links to USB alternate settings through a three-entry lookup table when CVSD traffic uses transparent voice settings. The lookup current...

0.00123EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: btusb: clamp SCO altsetting table indices btusbwork maps the number of active SCO links to USB alternate settings through a three-entry lookup table...

5.5CVSS6AI score0.00123EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013012)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013012 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: reorder cleanup in btusbdisconnect to avoid UAF There is a KASAN:...

5.7AI score0.00175EPSS
Exploits0References4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/04/14 9:13 a.m.6 views

Stack-based buffer overflow vulnerability in Dynabook Bluetooth ACPI Drivers

Overview Bluetooth ACPI Drivers provided by Dynabook Inc. contain the following vulnerability. Stack-based buffer overflow CWE-121 - CVE-2026-35553 Andrea Monzani, Antonio Parata, and Davide Netti of University of Milan reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the...

8.4CVSS6.4AI score0.00147EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006789)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006789 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: mxs-auart: add spinlock around changing cts state The uarthandlectschange function in...

7.8CVSS5.8AI score0.00327EPSS
Exploits0References4
CloudLinux
CloudLinux
added 2026/02/18 2:51 p.m.14 views

kernel: Fix of 13 CVEs

fbdev: Fix vmalloc out-of-bounds write in fastimageblit CVE-2025-38685 - cnic: Fix use-after-free bugs in cnicdeletetask CVE-2025-39945 - scsi: bfa: Double-free fix CVE-2025-38699 - fbdev: fix potential buffer overflow in doregisterframebuffer CVE-2025-38702 - scsi: ses: Fix slab-out-of-bounds in...

7.8CVSS9AI score0.00174EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-24857)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24857 advisory. - A race condition was found in the Linux kernel's net/bluetooth device driver in conninfomin,maxageset...

6.8CVSS7.8AI score0.00317EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.9 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-24860)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24860 advisory. - A race condition was found in the Linux kernel's bluetooth device driver in min,maxkeysizeset function. This...

5.3CVSS7.9AI score0.00805EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001764)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001764 advisory. A race condition was found in the Linux kernel's bluetooth device driver in min,maxkeysizeset function. This can result in a null pointer dereference issue, possibly...

5.3CVSS6.5AI score0.00805EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/13 3:34 p.m.3 views

CVE-2025-71082

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: revert use of devmkzalloc in btusb This reverts commit 98921dbd00c4e "Bluetooth: Use devmkzalloc in btusb.c file". In btusbprobe, we use devmkzalloc to allocate the btusb data. This ties the lifetime of all the...

5.3AI score0.0012EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder