Lucene search
K

38 matches found

Vulnrichment
Vulnrichment
added 2025/08/19 8:52 p.m.7 views

CVE-2025-55031 Passkey phishing within Bluetooth range

Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range could have used this to trick the user into using their passkey to log the attacker's computer into the target account. This vulnerability was fixed...

5.8AI score0.00386EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.7 views

PT-2025-33876 · Mozilla · Focus For Ios +1

Name of the Vulnerable Software and Affected Versions: Firefox for iOS versions prior to 142 Focus for iOS versions prior to 142 Description: Malicious pages could exploit Firefox for iOS to pass FIDO links to the operating system, triggering the hybrid passkey transport. An attacker within...

9.8CVSS6.9AI score0.00386EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/06/20 12:0 a.m.12 views

CVE-2025-32876

An issue was discovered on COROS PACE 3 devices through 3.0808.0. The BLE implementation of the COROS smartwatch does not support LE Secure Connections and instead enforces BLE Legacy Pairing. In BLE Legacy Pairing, the Short-Term Key STK can be easily guessed. This requires knowledge of the...

0.00336EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/06/26 3:12 a.m.40 views

CVE-2024-27867

An authentication issue was addressed with improved state management. This issue is fixed in AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, and Beats Firmware Update 6F8. When your headphones are seeking a connection request to one of your previously paired devices, an attacker in...

0.00832EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/04/18 2:37 a.m.6 views

kernel: Information leak in l2cap_parse_conf_req in net/bluetooth/l2cap_core.c

An information leak vulnerability was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capparseconfreq function. An attacker with physical access within the range of standard Bluetooth transmission could use thi...

6.5CVSS6.7AI score0.00395EPSS
Exploits0References5
NVD
NVD
added 2024/03/20 1:15 a.m.18 views

CVE-2024-2197

The Chirp Access app contains a hard-coded password, BEACONPASSWORD. An attacker within Bluetooth range could change configuration settings within the Bluetooth beacon, effectively disabling the application's ability to notify users when they are near a Beacon-enabled access point. This variable...

4.3CVSS4.5AI score0.00283EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/19 11:46 p.m.14 views

CVE-2024-2197 Chirp Systems Chirp Access Use of Hard-coded Password

The Chirp Access app contains a hard-coded password, BEACONPASSWORD. An attacker within Bluetooth range could change configuration settings within the Bluetooth beacon, effectively disabling the application's ability to notify users when they are near a Beacon-enabled access point. This variable...

4.3CVSS6.8AI score0.00283EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/19 11:46 p.m.28 views

CVE-2024-2197 Chirp Systems Chirp Access Use of Hard-coded Password

The Chirp Access app contains a hard-coded password, BEACONPASSWORD. An attacker within Bluetooth range could change configuration settings within the Bluetooth beacon, effectively disabling the application's ability to notify users when they are near a Beacon-enabled access point. This variable...

4.3CVSS4.9AI score0.00283EPSS
Exploits0References2
Slackware Linux
Slackware Linux
added 2023/12/14 8:13 p.m.34 views

[slackware-security] bluez

New bluez packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bluez-5.71-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: It may have been possible for an attacker within Bluetoo...

6.3CVSS7.7AI score0.07879EPSS
Exploits8
OSV
OSV
added 2023/02/08 12:15 a.m.5 views

CVE-2022-45192

An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a cleartext encryption pause request...

6.5CVSS5.8AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/11/23 7:26 p.m.63 views

CVE-2022-42896

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

8.1CVSS8.1AI score0.02014EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/02/02 12:18 p.m.12 views

hardware: buffer overflow in bluetooth firmware

A flaw was found in the firmware of some Intel Bluetooth devices. This may allow an unauthenticated attacker within Bluetooth range to overflow a buffer and corrupt memory leading to a crash or privilege escalation...

8.8CVSS7.5AI score0.0097EPSS
Exploits0References5
OSV
OSV
added 2020/12/18 8:15 a.m.4 views

CVE-2020-27639

The Bluetooth handset of Mitel MiVoice 6873i, 6930, and 6940 SIP phones with firmware before 5.1.0.SP6 could allow an unauthenticated attacker within Bluetooth range to pair a rogue Bluetooth device when a phone handset loses connection, due to an improper pairing mechanism. A successful exploit...

8.1CVSS7.3AI score0.00513EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/12/15 5:24 p.m.5 views

hardware: buffer overflow in bluetooth firmware

A flaw was found in the firmware of some Intel Bluetooth devices. This may allow an unauthenticated attacker within Bluetooth range to overflow a buffer and corrupt memory leading to a crash or privilege escalation...

8.8CVSS7.5AI score0.0097EPSS
Exploits0References5
Prion
Prion
added 2020/06/09 8:15 a.m.17 views

Code injection

SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SP600N with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as...

8.3CVSS8.6AI score0.00582EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/11/05 8:56 p.m.13 views

kernel: Heap address information leak while using L2CAP_GET_CONF_OPT

A flaw was found in the Linux kernel's implementation of Logical Link Control and Adaptation Protocol L2CAP, part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packe...

6.5CVSS7AI score0.01827EPSS
Exploits1References4
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/08/30 8:2 a.m.56 views

A Secure “Smart” Kettle?

We haven’t looked at smart kettles for a long time, mostly as the UK market leader, Smarter, fixed their security with the iKettle 3.0. So I got quite excited when a colleague pointed out the Xiaomi ‘smart’ kettle a few weeks back. It’s the first kettle with a mobile app that we’ve seen for a...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/09/29 3:0 p.m.66 views

BlueBorne – Bluetooth’s airborne influenza

Armis Labs has discovered a new attack vector that targets any device that has Bluetooth capability. This includes mobile, desktop, and IoT — roughly accounting for 8.2 billion devices. All operating systems are susceptible — Android, iOS, Windows, and Linux. Dubbed BlueBorne, it exposes several...

7AI score
Exploits0
Rows per page
Query Builder