CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

173 matches found

CVE•added 2026/06/01 9:14 p.m.•16 views

CVE-2026-0045

CVE-2026-0045 concerns a logic error in the Bluetooth stack: in bta_jv_rfcomm_connect of bta_jv_act.cc , there is a possible bypass of bonding for a secure connection. This could allow local escalation of privilege with no additional execution privileges needed, and requires no user interaction t...

7.8CVSS5.9AI score0.00083EPSS

Exploits0References1Affected Software1

OSV•added 2026/05/28 10:16 a.m.•6 views

UBUNTU-CVE-2026-46140

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: validate WMT event SKB length before struct access btmtkusbhciwmtsync casts the WMT event response SKB data to struct btmtkhciwmtevt 7 bytes and struct btmtkhciwmtevtfuncc 9 bytes without first checking that the...

5.7AI score0.00175EPSS

Exploits0References7

CVE•added 2026/05/28 9:35 a.m.•15 views

CVE-2026-46140

The CVE affects Linux kernel Bluetooth btmtk code. btmtk_usb_hci_wmt_sync() casts WMT event response SKB data to btmtk_hci_wmt_evt (7 bytes) and btmtk_hci_wmt_evt_funcc (9 bytes) without verifying that the SKB contains enough data, causing out-of-bounds reads from SKB tailroom when a short firmwa...

5.8AI score0.00175EPSS

Exploits0References4

CNNVD•added 2026/05/28 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an issue with the WMT event length verification in the btmtk module. This vulnerability may lead ...

5.8AI score0.00175EPSS

Exploits0References4

CNNVD•added 2026/05/28 12:0 a.m.•7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of clamping on the rx length in the Bluetooth virtiobt module. This vulnerability may le...

7.7CVSS5.8AI score0.00144EPSS

Exploits0References5

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux – Vulnerability in Linux

Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of the Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in orde...

7.5CVSS6.8AI score0.002EPSS

Exploits0References2

Microsoft CVE•added 2026/04/23 8:8 a.m.•3 views

Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock

...

7.8CVSS5.2AI score0.00126EPSS

Exploits0

Tenable Nessus•added 2026/01/16 12:0 a.m.•5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001457)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001457 advisory. Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected...

7.5CVSS7AI score0.002EPSS

Exploits0References4

Positive Technologies•added 2026/01/14 12:0 a.m.•3 views

PT-2026-2908

Name of the Vulnerable Software and Affected Versions AIRTH SMART HOME AQI MONITOR Bootloader version 1.005 Description An issue allows a physically proximate attacker to obtain sensitive information via the UART port of the BK7231N controller Wi-Fi and BLE module on the device. The UART port is...

4.6CVSS6.3AI score0.00153EPSS

Exploits0References4

Redos•added 2026/01/12 12:0 a.m.•6 views

ROS-20260112-7345

A vulnerability in the l2capsockrecvcb function in the net/bluetooth/l2capsock.c module of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

5.5CVSS6.4AI score0.00212EPSS

Exploits0