Lucene search
K

29 matches found

NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-10641

Zephyr's Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser subsys/bluetooth/host/classic/hfphf.c contains an out-of-bounds write. During Service Level Connection setup the HF sends AT+CIND=? and parses the AG's +CIND: response in cindhandle, which assigns a per-entry counter index a...

7.1CVSS0.00282EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/06/17 1:14 p.m.14 views

CVE-2026-10641 Out-of-bounds write in Bluetooth HFP Hands-Free CIND indicator parsing (cind_handle_values)

Zephyr's Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser subsys/bluetooth/host/classic/hfphf.c contains an out-of-bounds write. During Service Level Connection setup the HF sends AT+CIND=? and parses the AG's +CIND: response in cindhandle, which assigns a per-entry counter index a...

7.1CVSS0.00282EPSS
Exploits1References2
CVE
CVE
added 2026/06/17 1:14 p.m.17 views

CVE-2026-10641

Zephyr Bluetooth Classic HFP HF CIND parser (subsys/bluetooth/host/classic/hfp_hf.c) contains an out-of-bounds write during +CIND=?/+CIND: handling. cind_handle_values() writes hf-ind_table[index] = i without verifying index is within the 20-element int8_t ind_table[]. A remote attacker could sen...

7.1CVSS5.5AI score0.00282EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50394

Name of the Vulnerable Software and Affected Versions Zephyr versions 1.7 through 4.4.0 Description The Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser in subsys/bluetooth/host/classic/hfp hf.c contains an out-of-bounds write. During Service Level Connection setup, the Hands-Free ...

7.1CVSS5.8AI score0.00282EPSS
Exploits1References6
Microsoft KB
Microsoft KB
added 2026/01/13 4:0 p.m.26 views

January 13, 2026—KB5073697 (Monthly Rollup)

January 13, 2026—KB5073697 Monthly Rollup Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the past...

9.8CVSS7.5AI score0.1911EPSS
Exploits2
Microsoft KB
Microsoft KB
added 2026/01/13 4:0 p.m.13 views

January 13, 2026—KB5073700 (Security-only update)

January 13, 2026—KB5073700 Security-only update Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the...

9.8CVSS7.5AI score0.1911EPSS
Exploits2
Microsoft KB
Microsoft KB
added 2026/01/13 4:0 p.m.79 views

January 13, 2026—KB5073723 (OS Build 17763.8276)

January 13, 2026—KB5073723 OS Build 17763.8276 Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the pa...

9.8CVSS7.6AI score0.1911EPSS
Exploits6
Cvelist
Cvelist
added 2025/11/18 4:51 a.m.11 views

CVE-2025-48593

In btahfclientcbinit of btahfclientmain.cc, there is a possible remote code execution due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00911EPSS
Exploits4References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-4412

Malware in sbrugna...

6.4CVSS6.4AI score0.04849EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25854

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00209EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:20 p.m.5 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS7.9AI score0.00209EPSS
Exploits0References1
OSV
OSV
added 2025/08/26 11:15 p.m.4 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS6.3AI score0.00209EPSS
Exploits0References2
NVD
NVD
added 2025/08/26 11:15 p.m.4 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS0.00209EPSS
Exploits0References2
CVE
CVE
added 2025/08/26 10:48 p.m.75 views

CVE-2025-0084

CVE-2025-0084 is a remote code execution risk in the Android Bluetooth stack (HFP enabled) caused by an out-of-bounds write due to a use-after-free condition in multiple locations. The vulnerability could allow an attacker, with adjacent access and no user interaction, to execute code on the devi...

8.8CVSS7.6AI score0.00209EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/08/26 10:48 p.m.8 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00209EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/26 10:48 p.m.2 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.1AI score0.00209EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.6 views

PT-2025-15637

Name of the Vulnerable Software and Affected Versions Nissan Leaf versions manufactured in 2020 affected versions not specified Description A flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue is due to insufficient boundary...

8.8CVSS6.8AI score0.00379EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2025/03/12 12:0 a.m.4 views

PT-2025-11062 · Google · Android

Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: The software contains potential out-of-bounds write issues stemming from a use-after-free condition. Successful exploitation of this issue could lead to remote code execution over Bluetooth when...

8.8CVSS7.4AI score0.00209EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2023/06/15 7:15 p.m.2 views

CVE-2023-21108

In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS7.8AI score0.00239EPSS
Exploits0References2
OSV
OSV
added 2023/06/15 7:15 p.m.2 views

CVE-2023-21108

In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS6.3AI score0.00239EPSS
Exploits0References1
Rows per page
Query Builder