CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/10/07 12:0 a.m.•0 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986448)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986448 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix u8 overflow By keep sending L2CAPCONFREQ packets, chan-numconfrsp increases...

5.5CVSS6AI score0.00007EPSS

Exploits0References3

OSV•added 2025/06/21 1:15 a.m.•0 views

CVE-2025-5478

Sony XAV-AX8500 Bluetooth SDP Protocol Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sony XAV-AX8500 devices. Authentication is not required to exploit this vulnerability. The...

8.8CVSS6.3AI score

Exploits0References2

OSV•added 2024/10/21 8:15 p.m.•1 views

DEBIAN-CVE-2022-48947

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix u8 overflow By keep sending L2CAPCONFREQ packets, chan-numconfrsp increases multiple times and eventually it will wrap around the maximum number i.e., 255. This patch prevents this by adding a boundary check...

5.5CVSS5.4AI score0.00007EPSS

RedHat Linux•added 2024/05/22 10:3 a.m.•2 views

kernel: integer overflow in l2cap_config_req() in net/bluetooth/l2cap_core.c

An integer overflow flaw was found in the Linux kernel’s L2CAP bluetooth functionality in how a user generates malicious L2CAPCONFREQ packets. This flaw allows a local or bluetooth connection user to crash the system...

7.8CVSS6.7AI score0.00409EPSS

OSV•added 2023/02/09 11:17 p.m.•1 views

USN-5863-1 linux-azure vulnerabilities

It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-43945 Tamás Koczka discovered that th...

OSV•added 2023/02/09 9:36 p.m.•1 views

USN-5858-1 linux-oem-5.17 vulnerabilities

Davide Ornaghi discovered that the netfilter subsystem in the Linux kernel did not properly handle VLAN headers in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-0179 It was discovered that the Netronome...

7.8CVSS6.9AI score0.00592EPSS

Exploits5References5

OSV•added 2023/01/27 7:1 p.m.•2 views

USN-5831-1 linux-azure-fde vulnerabilities

Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2022-4378 Tamás Koczka discovered that the Bluetooth L2CAP handshake...

8.8CVSS7.5AI score0.00421EPSS

OSV•added 2023/01/25 10:46 p.m.•1 views

USN-5829-1 linux-raspi, linux-raspi-5.4 vulnerabilities

OSV•added 2023/01/19 7:27 p.m.•1 views

USN-5814-1 linux-azure, linux-gkeop, linux-intel-iotg, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle-5.15 vulnerabilities

8.8CVSS7.5AI score0.00421EPSS

OSV•added 2023/01/17 6:0 p.m.•1 views

USN-5808-1 linux-ibm-5.4 vulnerabilities

OSV•added 2023/01/13 2:4 a.m.•0 views

USN-5803-1 linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-gcp, linux-gcp-5.15, linux-hwe-5.15, linux-ibm, linux-kvm, linux-oracle, linux-raspi, vulnerabilities

8.8CVSS7.5AI score0.00421EPSS

OSV•added 2023/01/12 8:28 p.m.•1 views

USN-5802-1 linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities

OSV•added 2023/01/06 10:55 p.m.•1 views

USN-5794-1 linux-aws vulnerabilities

ATTACKERKB•added 2022/09/16 6:15 a.m.•4 views

CVE-2022-22105

Memory corruption in bluetooth due to integer overflow while processing HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music...

9.8CVSS7.4AI score0.0032EPSS

Exploits0References2

OSV•added 2020/09/18 4:15 p.m.•1 views

CVE-2020-0309

In the Bluetooth server, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System privileges and a Firmware compromise needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

6.7CVSS6.7AI score

CNVD•added 2020/03/26 12:0 a.m.•2 views

Apple macOS Catalina Bluetooth component buffer overflow vulnerability (CNVD-2020-22473)

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.Bluetooth is one of the Bluetooth components. A buffer overflow vulnerability exists in the Bluetooth component of Apple macOS Catalina versions prior to 10.15.4. A local attacker could exploit this...

7.1CVSS6.6AI score0.00036EPSS

OSV•added 2019/09/27 7:15 p.m.•1 views

CVE-2019-9311

In Bluetooth, there is a possible crash due to an integer overflow. This could lead to remote denial of service on incoming calls with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-79431031...

7.5CVSS6AI score0.00499EPSS

OSV•added 2019/09/27 7:15 p.m.•0 views

CVE-2019-9257

In Bluetooth, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113572342...

7.8CVSS7.3AI score