Lucene search
K

366 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/10 5:4 p.m.2 views

CVE-2026-23671

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally...

7CVSS6AI score0.00205EPSS
Exploits0References2Affected Software17
Microsoft CVE
Microsoft CVE
added 2026/03/10 2:0 p.m.4 views

Windows Bluetooth RFCOM Protocol Driver Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally...

7CVSS5.9AI score0.00205EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/27 7:44 p.m.7 views

CVE-2026-23750

Golioth Pouch version 0.1.0, prior to commit 1b2219a1, contains a heap-based buffer overflow in BLE GATT server certificate handling. servercertwrite allocates a heap buffer of size CONFIGPOUCHSERVERCERTMAXLEN when receiving the first fragment, then appends subsequent fragments using memcpy witho...

8.1CVSS6.1AI score0.00156EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/02/16 12:13 p.m.4 views

kernel: Bluetooth: ISO: Fix possible UAF on iso_conn_free

A vulnerability was found in isosockkill in net/bluetooth/iso.c in Bluetooth protocol stack in the Linux Kernel. In this flaw if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.8AI score0.00197EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/09 2:40 a.m.5 views

kernel: Bluetooth: ISO: Fix possible UAF on iso_conn_free

A vulnerability was found in isosockkill in net/bluetooth/iso.c in Bluetooth protocol stack in the Linux Kernel. In this flaw if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.8AI score0.00197EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/04 6:55 p.m.2 views

kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service

A flaw was found in the Linux kernel's Common Internet File System CIFS component. This use-after-free vulnerability occurs due to improper handling of server hostname information during connection re-establishment. An attacker on an adjacent network could exploit this, potentially leading to a...

5.8AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/04 9:7 a.m.4 views

kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service

A flaw was found in the Linux kernel's Common Internet File System CIFS component. This use-after-free vulnerability occurs due to improper handling of server hostname information during connection re-establishment. An attacker on an adjacent network could exploit this, potentially leading to a...

5.8AI score0.00162EPSS
Exploits0References5
Redos
Redos
added 2026/01/29 12:0 a.m.6 views

ROS-20260129-73-0012

A vulnerability in the Audio Profile AVRCP component of the Bluetooth protocol stack for Linux BlueZ is related to reading outside the valid range. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

5.7CVSS5.9AI score0.00808EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/01/28 12:38 a.m.2 views

kernel: Bluetooth: ISO: Fix possible UAF on iso_conn_free

A vulnerability was found in isosockkill in net/bluetooth/iso.c in Bluetooth protocol stack in the Linux Kernel. In this flaw if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.8AI score0.00197EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/26 2:32 p.m.2 views

kernel: Bluetooth: ISO: Fix possible UAF on iso_conn_free

A vulnerability was found in isosockkill in net/bluetooth/iso.c in Bluetooth protocol stack in the Linux Kernel. In this flaw if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.8AI score0.00197EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-36968)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36968 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix div-by-zero in...

6.5CVSS6.7AI score0.00215EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49950)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49950 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix uaf in l2capconnec...

7.8CVSS6.7AI score0.00262EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003203)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003203 advisory. The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse...

8CVSS7.1AI score0.16181EPSS
Exploits12References16
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002680)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002680 advisory. The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse...

8CVSS7.1AI score0.16181EPSS
Exploits12References16
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000217)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000217 advisory. A heap address information leak while using L2CAPGETCONFOPT was discovered in the Linux kernel before 5.1-rc1. Tenable has extracted the preceding description block...

6.5CVSS6.4AI score0.01827EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.8 views

PT-2026-8141

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Bluetooth implementation of the Linux kernel related to a null pointer dereference within the hci uart write work function. The issue arises from a race condition...

5.5CVSS6.5AI score0.00123EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/31 11:32 a.m.5 views

CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

5.8CVSS5.3AI score0.00177EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/31 12:28 a.m.12 views

SUSE CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

5.8CVSS6.6AI score0.00177EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992802)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992802 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free Fix potential use-after-free in l2caplecommandrej. Tenable h...

7.8CVSS6.5AI score0.0015EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.9 views

CVE-2023-54214

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock and reacquire later which makes it possible that the chan is...

6AI score0.00177EPSS
Exploits0References10
Rows per page
Query Builder