Lucene search
+L

391 matches found

CVE
CVE
added 2025/07/09 10:42 a.m.91 views

CVE-2025-38250

In CVE-2025-38250, the Linux kernel Bluetooth vhci_flush() path is affected by a use-after-free when a thread closes a vhci fd while another thread uses the device. The issue stems from a missing synchronization after unlinking hdev from hci_dev_list in hci_unregister_dev(), allowing another thre...

7.8CVSS6.4AI score0.00142EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/07/09 10:42 a.m.4 views

CVE-2025-38250 Bluetooth: hci_core: Fix use-after-free in vhci_flush()

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix use-after-free in vhciflush syzbot reported use-after-free in vhciflush without repro. 0 From the splat, a thread closed a vhci file descriptor while its device was being used by iotcl on another thread...

7.8CVSS6.1AI score0.00142EPSS
Exploits0References10
NVD
NVD
added 2025/07/08 3:15 a.m.6 views

CVE-2025-20687

In Bluetooth driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418045; Issue ID: MSV-3481...

5.5CVSS0.00149EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 3:15 a.m.6 views

CVE-2025-20680

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...

9.8CVSS0.0066EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 2:0 a.m.27 views

CVE-2025-20687

CVE-2025-20687 affects the Bluetooth driver (MediaTek chipset family in various advisories). The vulnerability is an out-of-bounds read caused by an incorrect bounds check, enabling local denial of service with the attacker gaining user privileges; exploitation does not require user interaction. ...

5.5CVSS6.3AI score0.00149EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/08 2:0 a.m.13 views

CVE-2025-20687

In Bluetooth driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418045; Issue ID: MSV-3481...

0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 2:0 a.m.4 views

CVE-2025-20687

In Bluetooth driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418045; Issue ID: MSV-3481...

6.8AI score0.00149EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/08 2:0 a.m.5 views

CVE-2025-20680

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...

9.8CVSS5.9AI score0.0066EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/08 2:0 a.m.15 views

CVE-2025-20680

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...

0.0066EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 2:0 a.m.5 views

CVE-2025-20680

In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482...

7.4AI score0.0066EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 2:0 a.m.27 views

CVE-2025-20680

CVE-2025-20680 affects the Bluetooth driver, with an out-of-bounds write caused by an incorrect bounds check. The vulnerability can lead to local escalation of privilege with User execution privileges required and no user interaction needed. Patch ID: WCNCR00418044; Issue ID: MSV-3482. Vulnerabil...

9.8CVSS6.8AI score0.0066EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/07 12:0 a.m.4 views

PT-2025-28307 · Unknown · Bluetooth Driver

Name of the Vulnerable Software and Affected Versions: Bluetooth driver affected versions not specified Description: The issue is related to a possible out of bounds write in the Bluetooth driver due to an incorrect bounds check. This could lead to a local escalation of privilege, requiring user...

9.8CVSS6.3AI score0.0066EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/07/07 12:0 a.m.5 views

PT-2025-28314 · Unknown · Bluetooth Driver

Name of the Vulnerable Software and Affected Versions: Bluetooth driver affected versions not specified Description: The issue is related to a possible out of bounds read in the Bluetooth driver due to an incorrect bounds check. This could lead to a local denial of service, requiring user executi...

5.5CVSS6.1AI score0.00149EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2025/07/04 3:20 p.m.9 views

USN-7591-5: Linux kernel (Intel IoTG) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS7.3AI score0.02033EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.7 views

Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7597-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7597-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...

8.8CVSS7.7AI score0.02033EPSS
Exploits0References67
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.10 views

Ubuntu 22.04 LTS : Linux kernel (Xilinx ZynqMP) vulnerabilities (USN-7602-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7602-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...

8.8CVSS8.1AI score0.12727EPSS
Exploits3References197
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.12 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7591-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7591-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...

8.8CVSS7.7AI score0.02033EPSS
Exploits0References68
Ubuntu
Ubuntu
added 2025/06/24 7:19 p.m.3 views

USN-7598-1: Linux kernel (Azure) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Several security issues were discovered in the Linu...

8.8CVSS7.2AI score0.02033EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/06/24 6:35 p.m.4 views

USN-7597-2: Linux kernel (Azure FIPS) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Several security issues were discovered in the Linu...

8.8CVSS7.2AI score0.02033EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/06/24 6:29 p.m.3 views

USN-7597-1: Linux kernel (Azure) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Several security issues were discovered in the Linu...

8.8CVSS7.2AI score0.02033EPSS
Exploits0
Rows per page
Query Builder