Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CVE
CVEadded 2025/12/26 11:57 p.m.6 views

CVE-2025-68474

CVE-2025-68474 affects ESF-IDF (Espressif IoT Development Framework) in ESP-IDF BlueDroid AVRCP stack. In avrc_vendor_msg(), the code validates the buffer with AVRC_MIN_CMD_LEN = 20 bytes, but the fixed header written before the vendor payload is 29 bytes, causing an out-of-bounds write when vend...

7.6CVSS7.2AI score0.0001EPSS
Exploits0References7Affected Software1
CVE
CVEadded 2025/12/02 6:9 p.m.10 views

CVE-2025-66409

CVE-2025-66409 affects ESF-IDF (Espressif ESP32) where, when AVRCP is enabled, a malformed VENDOR DEPENDENT command can cause the Bluetooth stack to read memory beyond the validated buffer length. Affected versions include 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6 and earlier. Root cause is insufficient ...

9.1CVSS6.8AI score0.00065EPSS
Exploits0References7Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-12381

Malware in sbrugna...

8CVSS7.8AI score0.0006EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-25854

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.01152EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 5:16 p.m.1 views

CVE-2020-0022

In reassembleanddispatch of packetfragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS7.9AI score0.07576EPSS
Exploits8References1
OSV
OSVadded 2024/11/20 6:15 p.m.1 views

CVE-2018-9475

In HeadsetInterface::ClccResponse of btifhf.cc, there is a possible out of bounds stack write due to a missing bounds check. This could lead to remote escalation of privilege via Bluetooth, if the recipient has enabled SIP calls with no additional execution privileges needed. User interaction is...

8.8CVSS5.9AI score0.01584EPSS
Exploits0References1
OSV
OSVadded 2023/06/15 7:15 p.m.0 views

CVE-2023-21108

In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS6.3AI score0.00916EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2022/08/09 8:21 p.m.1 views

CVE-2022-20345

In l2cbleprocesssigcmd of l2cble.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12...

8.6AI score0.00276EPSS
Exploits0References1
OSV
OSVadded 2021/10/06 6:15 p.m.0 views

CVE-2021-25485

Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Oct-2021 Release 1 allows attackers to write file as system UID via BT remote socket...

8CVSS5.8AI score0.0006EPSS
Exploits0References1
hackapp
hackappadded 2016/04/01 8:55 a.m.12 views

Bluetooth Remote PC - External URLs, Possible privilege escalation, WebView JavaScript enabled vulnerabilities

HackApp vulnerability scanner discovered that application Bluetooth Remote PC published at the 'play' market has multiple vulnerabilities...

1.2AI score
Exploits0References1Affected Software1
Rows per page
Query Builder