Lucene search
K

57 matches found

RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.3 views

kernel: Bluetooth: btusb: mediatek: add intf release flow when usb disconnect

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: add intf release flow when usb disconnect MediaTek claim an special usb intr interface for ISO data transmission. The interface need to be released before unregistering hci device when usb disconnect...

5.5CVSS6.7AI score0.00213EPSS
Exploits0References5
NVD
NVD
added 2025/05/12 8:15 a.m.35 views

CVE-2025-3496

An unauthenticated remote attacker can cause a buffer overflow which could lead to unexpected behaviour or DoS via Bluetooth or RS-232 interface...

7.5CVSS0.0047EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/12 8:1 a.m.29 views

CVE-2025-3496 AUMA Riester: Buffer overflow in service telegram

An unauthenticated remote attacker can cause a buffer overflow which could lead to unexpected behaviour or DoS via Bluetooth or RS-232 interface...

7.5CVSS0.0047EPSS
Exploits0References1
CVE
CVE
added 2025/05/12 8:1 a.m.75 views

CVE-2025-3496

CVE-2025-3496 describes an unauthenticated remote buffer overflow affecting AUMA devices (AC1.2, MEC, PROFOX, SGx/SVx, TIGRON, TIGRON SIL) that can trigger unexpected behavior or DoS via Bluetooth or RS-232. Root cause is a buffer copy without proper size checking (classic buffer overflow). Publi...

7.5CVSS7.8AI score0.0047EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/03/06 4:4 p.m.3 views

CVE-2025-21827

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: Add locks for usbdriverclaiminterface The documentation for usbdriverclaiminterface says that "the device lock" is needed when the function is called from places other than probe. This appears to be th...

5.5CVSS5.6AI score0.00128EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: In hci, fix for null-ptr-deref in hcireadsupportedcodecs. Fix hcicmdsyncsk to return not NULL for unknown opcodes. hcicmdsyncsk returns NULL if a command returns a status event. However, it also returns NULL when an...

5.5CVSS6.4AI score0.00218EPSS
Exploits0References3
NVD
NVD
added 2025/01/06 5:15 p.m.11 views

CVE-2024-56757

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: add intf release flow when usb disconnect MediaTek claim an special usb intr interface for ISO data transmission. The interface need to be released before unregistering hci device when usb disconnect...

5.5CVSS0.00213EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/06 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a special USB interrupt interface for MediaTek in the btusb driver for Bluetooth modules that needs to be...

5.5CVSS6.4AI score0.00213EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/02 12:0 a.m.5 views

PT-2024-10677 · Bluetooth · Bluetooth

Name of the Vulnerable Software and Affected Versions: Bluetooth affected versions not specified Description: The issue is related to a possible out of bounds write in the handle notification response function of btif rc.cc due to a missing bounds check. This could lead to remote code execution...

8.8CVSS8.8AI score0.00196EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/12 12:0 a.m.6 views

Firewalla 安全漏洞

Firewalla is a driver from Firewalla Inc. A security vulnerability exists in Firewalla versions prior to 1.979 that stems from the presence of multiple authenticated operating system command injection vulnerabilities. An attacker authenticated with the Bluetooth Low Power Interface can use the...

6.8CVSS7.5AI score0.01551EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/06/20 12:0 a.m.5 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the Bluetooth:HCI module removing HCIAMP support...

5.5CVSS6.5AI score0.00209EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/29 2:10 p.m.3 views

SUSE CVE-2024-36011

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix potential null-ptr-deref Fix potential null-ptr-deref in hcilebigsyncestablishedevt...

5.5CVSS6.8AI score0.0021EPSS
Exploits0References14
OSV
OSV
added 2023/10/31 9:7 p.m.2 views

USN-6465-1 linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities

Yu Hao and Weiteng Chen discovered that the Bluetooth HCI UART driver in the Linux kernel contained a race condition, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2023-31083 Lin Ma discovered that the Netlink...

5.5CVSS6.5AI score0.00454EPSS
Exploits0References3
OSV
OSV
added 2023/10/25 3:32 p.m.7 views

CLSA-2023-1698247974 Fix of 6 CVEs

CVE-2023-42752 // CVE-url: https://ubuntu.com/security/CVE-2023-42752 - igmp: limit igmpv3newpack packet size to IPMAXMTU CVE-2023-4623 // CVE-url: https://ubuntu.com/security/CVE-2023-4623 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-34319 // CVE-url:...

7.8CVSS6.8AI score0.00454EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/19 12:0 a.m.4 views

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a buffer overflow vulnerability that stems from a lack of bounds checking in the registernotificationrsp component of btifrc.cc, which can be exploited by an attacker to cause an out-of-bounds re...

5.5CVSS7.2AI score0.00087EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/24 12:0 a.m.6 views

Google Pixel 缓冲区错误漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a buffer overflow vulnerability that originates from a boundary error in processing data in btmbleprocessperiodicadvsynclostevt in blescannerhciinterface.cc, which can be exploited by an attacker to...

4.4CVSS6.9AI score0.00093EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.3 views

SUSE CVE-2019-10207

A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the syste...

5.3CVSS5.9AI score0.00881EPSS
Exploits1References16
OSV
OSV
added 2022/03/10 5:45 p.m.6 views

CVE-2022-20057

In btif, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06271186; Issue ID: ALPS06271186...

6.5CVSS6.7AI score0.00123EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/03/10 12:0 a.m.5 views

MediaTek 多款产品安全漏洞

MediaTek Mt Series is a series of smartphone chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in several MediaTek products, which stems from incorrect error handling in btif and may result in memory corruption. The following products and versions are affected:...

6.5CVSS6.4AI score0.00123EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.3 views

The vulnerability of the Bluetooth HCI_ISO service of the Wireshark network traffic analyzer allows a hacker to cause a service failure.

The vulnerability of the Bluetooth HCIISO traffic analyzer service in Wireshark is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to cause a service failure by injecting specially created packets...

7.8CVSS7.3AI score0.07502EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder