CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

99 matches found

ATTACKERKB•added 2026/03/30 2:6 p.m.•13 views

CVE-2026-28526

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the AVRCP Controller LISTPLAYERAPPLICATIONSETTINGATTRIBUTES and LISTPLAYERAPPLICATIONSETTINGVALUES handlers that allows attackers to read beyond buffer boundaries. A nearby attacker with a paired Bluetooth...

3.5CVSS6AI score0.00021EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 11:23 a.m.•5 views

CVE-2021-31611

The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle an out-of-order LMP Setup procedure that is followed by a malformed LMP packet, allowing attackers in radio range to deadlock a device via a crafted LMP packet. The user needs to manually reboo...

5.7CVSS6.8AI score0.00098EPSS

Exploits0References1

GithubExploit•added 2025/12/08 2:10 p.m.•143 views

Exploit for CVE-2025-63895

JXLInfotainment-CVE-2025-63895 CVE-2025-63896 Attack...

6.9AI score0.001EPSS

Exploits3

Fedora•added 2025/12/04 12:53 a.m.•5 views

[SECURITY] Fedora 43 Update: ubertooth-2020.12.R1-24.fc43

Project Ubertooth is an open source wireless development platform suitable for Bluetooth experimentation. Ubertooth ships with a capable BLE Bluetooth Smart sniffer and can sniff some data from Basic Rate BR Bluetooth Classic connections...

7AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-20810

Malware in sbrugna...

6.5CVSS6.4AI score0.00101EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-20812

Malware in sbrugna...

6.5CVSS6.6AI score0.00129EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-18668

Malware in sbrugna...

6.5CVSS6.6AI score0.00134EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-18498

Malware in sbrugna...

6.5CVSS6.5AI score0.00129EPSS

Exploits0References3

Tenable Nessus•added 2025/08/30 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2021-34147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the reception of a malformed LMP timing...

6.5CVSS6.4AI score0.00101EPSS

Exploits0References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-34146

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing...

6.5CVSS6.4AI score0.00101EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 8:55 p.m.•4 views

CVE-2021-28135

The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service crash in ESP32 by flooding the target device with LMP Feature Response data...

6.5CVSS6.6AI score0.00279EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:53 p.m.•2 views

CVE-2021-31787

The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMPfeaturesres packets...

6.5CVSS6.6AI score0.00134EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:42 p.m.•6 views

CVE-2021-31609

The Bluetooth Classic implementation in Silicon Labs iWRAP 6.3.0 and earlier does not properly handle the reception of an oversized LMP packet greater than 17 bytes, allowing attackers in radio range to trigger a crash in WT32i via a crafted LMP packet...

6.5CVSS6.8AI score0.00129EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:42 p.m.•8 views

CVE-2021-31610

The Bluetooth Classic implementation on AB32VG1 devices does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service either restart or deadlock the device by flooding a device with LMPAUrand data...

6.5CVSS7AI score0.00204EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 3:4 a.m.•10 views

CVE-2024-6137

BT: Classic: SDP OOB access in getattsearchlist...

7.6CVSS7AI score0.00165EPSS

Exploits1References1

OSV•added 2024/09/13 8:15 p.m.•2 views

CVE-2024-6135

BT:Classic: Multiple missing buf length checks...

6.5CVSS5.4AI score0.00167EPSS

Exploits0References1

OSV•added 2024/09/13 8:15 p.m.•4 views

CVE-2024-6137

BT: Classic: SDP OOB access in getattsearchlist...

6.5CVSS5.4AI score0.00165EPSS

Exploits1References1

Positive Technologies•added 2024/09/13 12:0 a.m.•5 views

PT-2024-37412

Name of the Vulnerable Software and Affected Versions: BT: Classic affected versions not specified Description: The issue concerns an SDP OOB access vulnerability in the get att search list function of BT Classic. Recommendations: At the moment, there is no information about a newer version that...

7.6CVSS6.2AI score0.00165EPSS

Exploits1References7

SUSE CVE•added 2023/06/06 2:17 a.m.•3 views

SUSE CVE-2022-24695

Bluetooth Classic in Bluetooth Core Specification through 5.3 does not properly conceal device information for Bluetooth transceivers in Non-Discoverable mode. By conducting an efficient over-the-air attack, an attacker can fully extract the permanent, unique Bluetooth MAC identifier, along with...

4.3CVSS6.7AI score0.00178EPSS

Exploits0References3

OSV•added 2023/06/02 12:15 p.m.•2 views

CVE-2022-24695

4.3CVSS5.8AI score0.00178EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by