CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: CSC Pay Mobile App versions prior to 2.20.0 Description: The CSC Pay Mobile App contains an issue that allows users to bypass payment authorization by disabling Bluetooth during a transaction. This bypass could lead to unauthorized use of...

5.4CVSS7.1AI score0.00207EPSS

Exploits1References6

RedhatCVE•added 2025/06/27 6:18 p.m.•5 views

CVE-2025-5825

Autel MaxiCharger AC Wallbox Commercial Firmware Downgrade Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Wallbox Commercial charging stations. An attacker must first obtain the...

7.5CVSS7.8AI score0.00219EPSS

Exploits0References1

Positive Technologies•added 2025/06/20 12:0 a.m.•2 views

PT-2025-26315 · Coros · Coros Pace 3

Name of the Vulnerable Software and Affected Versions: COROS PACE 3 versions 3.0808.0 and earlier Description: An issue was discovered that allows an attacker to connect to the device via Bluetooth Low Energy BLE if no other device is connected. Once connected, the attacker can access the device'...

8.8CVSS6.6AI score0.0012EPSS

Exploits1References7

OSV•added 2024/05/03 3:15 a.m.•6 views

CVE-2023-44431

BlueZ Audio Profile AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target...

8CVSS7.3AI score

Exploits0References1

Positive Technologies•added 2023/12/21 12:0 a.m.•2 views

PT-2023-31859 · Bluez +4 · Bluez +4

Name of the Vulnerable Software and Affected Versions: BlueZ affected versions not specified Description: This issue allows network-adjacent attackers to disclose sensitive information via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this issue, as the...

8CVSS5.8AI score0.36549EPSS

Exploits7References81

CNVD•added 2023/06/18 12:0 a.m.•5 views

Google Android Resource Management Error Vulnerability (CNVD-2023-53160)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a resource management error vulnerability that can be exploited by an attacker to remotely execute code via Bluetooth...

8.8CVSS7AI score0.00916EPSS

Exploits0References1

Positive Technologies•added 2022/12/07 12:0 a.m.•1 views

PT-2022-14638 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-13 Description: The issue is related to a possible out of bounds write in the avdt msg asmbl function of avdt msg.cc due to a missing bounds check. This could lead to remote code execution over...

8.8CVSS8.7AI score0.02169EPSS

Exploits0References3

CNVD•added 2021/07/08 12:0 a.m.•9 views

Google Android System elevation of privilege vulnerability (CNVD-2021-52340)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the System component of Google Android versions 8.1, 9, 10, and 11, which can be exploited by an attacker to trick...

8CVSS6.7AI score0.00069EPSS

Exploits0References1

OSV•added 2021/01/11 10:15 p.m.•0 views

CVE-2021-0316

In avrcparsvendorcmd of avrcparstg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions:...

9.8CVSS7.3AI score

Exploits0References1

OSV•added 2018/10/02 7:29 p.m.•2 views

CVE-2018-9504

In sdpcopyrawdata of sdpdiscovery.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution over bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

8.8CVSS6.3AI score0.00532EPSS

Exploits0References4

0day.today•added 2018/03/23 12:0 a.m.•57 views

Android Bluetooth - BNEP BNEP_SETUP_CONNECTION_REQUEST_MSG Out-of-Bounds Read Exploit

Exploit for Android platform in category dos / poc import os import sys import struct import bluetooth BNEPPSM = 15 BNEPFRAMECONTROL = 0x01 Control types parsed by bnepprocesscontrolpacket in bneputils.cc BNEPSETUPCONNECTIONREQUESTMSG = 0x01 def oobreadsrcbdaddr, dst: bnep =...

0.3AI score0.33566EPSS

Exploits7

Exploit DB•added 2005/10/24 12:0 a.m.•96 views

Linux Kernel 2.4.x/2.6.x - Bluetooth Signed Buffer Index Vulnerability 4

Linux Kernel 2.4.x/2.6.x Bluetooth Signed Buffer Index Vulnerability 4. CVE-2005-0750. Local exploit for linux platform source: http://www.securityfocus.com/bid/12911/info A local signed-buffer-index vulnerability affects the Linux kernel because it fails to securely handle signed values when...

7.2CVSS5.4AI score0.00597EPSS

Exploits1

Exploit DB•added 2005/04/08 12:0 a.m.•23 views

Linux Kernel 2.4.x/2.6.x - BlueTooth Signed Buffer Index Privilege Escalation (1)

/ EDB Note: Update can be found here https://www.exploit-db.com/exploits/926/ source: https://www.securityfocus.com/bid/12911/info A local signed-buffer-index vulnerability affects the Linux kernel because it fails to securely handle signed values when validating memory indexes. A local attacker...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by