CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

90 matches found

Cvelist•added 2026/05/05 3:23 p.m.•27 views

CVE-2026-43069 Bluetooth: hci_ll: Fix firmware leak on error path

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcill: Fix firmware leak on error path Smatch reports: drivers/bluetooth/hcill.c:587 downloadfirmware warn: 'fw' from requestfirmware not released on lines: 544. In downloadfirmware, if requestfirmware succeeds but the...

0.00013EPSS

Exploits0References8

Positive Technologies•added 2026/05/05 12:0 a.m.•2 views

PT-2026-37072

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak exists in the Bluetooth component. In the download firmware function, if request firmware succeeds but the returned firmware content is invalid, such as having no data or...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References20

Tenable Nessus•added 2026/05/05 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-43069

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: hcill: Fix firmware leak on error path Smatch reports: drivers/bluetooth/hcill.c:587 downloadfirmware warn: 'fw' from requestfirmware not released on...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References3

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 8 : linux-firmware-20200619-101.git3890db36.el8 (AXSA:2021-1383:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1383:03 advisory. hardware: buffer overflow in bluetooth firmware CVE-2020-12321 Tenable has extracted the preceding description block directly from the MiracleLinux security...

8.8CVSS5.9AI score0.00285EPSS

Exploits0References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 7 : linux-firmware-20200421-80.git78c0348.el7 (AXSA:2021-1366:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1366:02 advisory. hardware: buffer overflow in bluetooth firmware CVE-2020-12321 Tenable has extracted the preceding description block directly from the MiracleLinux security...

8.8CVSS5.9AI score0.00285EPSS

Exploits0References2

OpenVAS•added 2026/01/15 12:0 a.m.•6 views

Fedora: Security Advisory (FEDORA-2026-2cebf295af)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score

Exploits0References6

Tenable Nessus•added 2026/01/14 12:0 a.m.•2 views

Fedora 42 : linux-firmware (2026-1d240112ff)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1d240112ff advisory. Update to 20260110: update firmware for MT7925 WiFi device mediatek MT7925: update bluetooth firmware to 20260106153314 mediatek MT7920: update bluetooth...

5.6AI score

Exploits0References1

EUVD•added 2025/12/10 9:31 p.m.•1 views

EUVD-2025-202589

An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to cause a Denial of Service DoS via sending a crafted Link Manager Protocol LMP packet...

6.2AI score0.001EPSS

Exploits2References3

OSV•added 2025/12/10 8:16 p.m.•0 views

CVE-2025-63895

7.5CVSS5.8AI score0.001EPSS

Exploits2References2

Vulnrichment•added 2025/12/10 12:0 a.m.•3 views

CVE-2025-63895

6.4AI score0.001EPSS

Exploits2References2

Positive Technologies•added 2025/12/10 12:0 a.m.•3 views

PT-2025-50488

Name of the Vulnerable Software and Affected Versions JXL 9 Inch Car Android Double Din Player version 12.0 Description An issue in the Bluetooth firmware allows attackers to cause a Denial of Service DoS by sending a crafted Link Manager Protocol LMP packet. A crafted LMP packet is a specific ty...

7.5CVSS6.4AI score0.001EPSS

Exploits2References5

Cvelist•added 2025/12/10 12:0 a.m.•25 views

CVE-2025-63895

0.001EPSS

Exploits2References2

CVE•added 2025/12/10 12:0 a.m.•13 views

CVE-2025-65824

The CVE describes an unauthenticated proximity attack against the Meatmeet device where an adversary can perform an unauthorized OTA firmware upgrade over BLE. The upgrade mechanism does not verify authenticity, allowing the attacker to overwrite the device firmware with their code and trigger Re...

8.8CVSS7.1AI score0.00323EPSS

Exploits1References2Affected Software1

CNNVD•added 2025/12/10 12:0 a.m.•1 views

JXL 9 Inch Car Android Double Din Player 安全漏洞

JXL 9 Inch Car Android Double Din Player is an in-car infotainment system from JXL. A security vulnerability exists in JXL 9 Inch Car Android Double Din Player Android v12.0, which stems from a flaw in the Bluetooth firmware that could lead to a denial of service attack...

7.5CVSS6.3AI score0.001EPSS

Exploits2References2

CVE•added 2025/12/10 12:0 a.m.•11 views

CVE-2025-63895

The CVE-2025-63895 issue affects the JXL 9 Inch Car Android Double Din Player (Android v12.0) with Bluetooth Classic stack. A flaw in the Bluetooth firmware’s LMP handling (LMP implementation) can be exploited by an attacker in Bluetooth range to trigger a denial-of-service during connection setu...

7.5CVSS6.4AI score0.001EPSS

Exploits2References2Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-24974

Malware in sbrugna...

9.8CVSS9.2AI score0.00294EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-10289

Malware in sbrugna...

7.1CVSS6.9AI score0.00057EPSS

Exploits0References2