Lucene search
K

283 matches found

OSV
OSV
added 2023/07/31 6:34 p.m.5 views

SUSE-SU-2023:3079-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002418 fixes several issues. The following security issues were fixed: - CVE-2023-35788: Fixed an out-of-bounds write in the flower classifier code via TCAFLOWERKEYENCOPTSGENEVE packets in flsetgeneveopt in net/sched/clsflower.c bsc1212509. -...

7.8CVSS7.7AI score0.0147EPSS
Exploits3References7
RedHat Linux
RedHat Linux
added 2023/07/18 8:31 a.m.17 views

Kernel: bluetooth: Unauthorized management command execution

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

6.8CVSS6.8AI score0.0147EPSS
Exploits2References5
OSV
OSV
added 2023/07/11 1:23 p.m.7 views

SUSE-SU-2023:2808-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-1077: Fixed a type confusion in picknextrtentity, that could cause memory corruption bsc1208600. - CVE-2023-1079: Fixed a use-after-free problem...

7.8CVSS7.8AI score0.0147EPSS
Exploits3References48
Vulnrichment
Vulnrichment
added 2023/06/23 12:0 a.m.9 views

CVE-2023-27964

An authentication issue was addressed with improved state management. This issue is fixed in AirPods Firmware Update 5E133. When your headphones are seeking a connection request to one of your previously paired devices, an attacker in Bluetooth range might be able to spoof the intended source...

6.2AI score0.08205EPSS
Exploits0References1
OSV
OSV
added 2023/05/26 5:15 p.m.1 views

DEBIAN-CVE-2023-2002

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

6.8CVSS6.4AI score0.0147EPSS
Exploits2References1
Prion
Prion
added 2023/05/26 5:15 p.m.46 views

Information disclosure

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

5.2CVSS6.7AI score0.0147EPSS
Exploits2References5Affected Software2
UbuntuCve
UbuntuCve
added 2023/05/26 5:15 p.m.40 views

CVE-2023-2002

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

6.8CVSS6.8AI score0.0147EPSS
Exploits2References21
RedhatCVE
RedhatCVE
added 2023/05/08 7:51 p.m.39 views

CVE-2023-2002

A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth...

6.8CVSS6.9AI score0.0147EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2023/04/26 12:0 a.m.2 views

PT-2023-9855 · Bluez +8 · Bluez +8

Name of the Vulnerable Software and Affected Versions: BlueZ affected versions not specified Description: The issue is related to a heap-based buffer overflow in the Phone Book Access profile of BlueZ, which can be exploited by network-adjacent attackers to execute arbitrary code on affected...

9.1CVSS7.2AI score0.07879EPSS
Exploits10References132
Positive Technologies
Positive Technologies
added 2023/04/26 12:0 a.m.3 views

PT-2023-9092 · Bluez +4 · Bluez +4

Name of the Vulnerable Software and Affected Versions: BlueZ affected versions not specified Description: The issue is related to a heap-based buffer overflow in the Phone Book Access profile of BlueZ, allowing network-adjacent attackers to execute arbitrary code on affected installations. User...

8CVSS7.1AI score0.07879EPSS
Exploits8References82
OSV
OSV
added 2023/03/27 1:15 a.m.3 views

CVE-2023-28866

In the Linux kernel through 6.2.8, net/bluetooth/hcisync.c allows out-of-bounds access because ampinit1 and ampinit2 are supposed to have an intentionally invalid element, but do not...

5.3CVSS7.8AI score
Exploits0References3
Cvelist
Cvelist
added 2023/03/16 12:0 a.m.26 views

CVE-2023-21452

Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device...

3.3CVSS4.2AI score0.0015EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/02/28 11:45 a.m.6 views

kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel’s L2CAP bluetooth functionality in how a user triggers a race condition by two malicious flows in the L2CAP bluetooth packets. This flaw allows a local or bluetooth connection user to crash the system or potentially escalate privileges...

7.1CVSS6.6AI score0.0129EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.2 views

PT-2023-33399 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.269 Description: The issue is related to a potential security vulnerability in the Bluetooth functionality. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.2 views

PT-2023-33271 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.161 Description: The issue is related to a potential security vulnerability in the Bluetooth L2CAP protocol, specifically an u8 overflow. The actual impact and attack plausibility have not yet been proven...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/26 12:0 a.m.8 views

PT-2022-10478 · Unknown · Fastrack Reflex 2.0

Name of the Vulnerable Software and Affected Versions: fastrack Reflex 2.0 W307S REFLEX v90.89 Activity Tracker Description: The issue allows an unauthenticated remote attacker to send a malicious firmware update via Bluetooth Low Energy BLE and potentially brick the device. Recommendations: For...

7.5CVSS7.6AI score0.00891EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/12/19 12:0 a.m.4 views

Microchip RN4870 安全漏洞

The Microchip RN4870 is a Bluetooth low power module chip from Microchip, Inc. The Microchip RN4870 module firmware version 1.43 has a security vulnerability that stems from the ability to bypass the key entry in legacy pairing, and through this cryptographic input bypass, a man-in-the-middle MiT...

7.5CVSS7.3AI score0.00746EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.6 views

PT-2022-23672 · Unknown · Mousenkeyhiddevice

Name of the Vulnerable Software and Affected Versions: MouseNKeyHidDevice versions prior to SMR Oct-2022 Release 1 Description: The issue is related to the improper restriction of broadcasting Intent in MouseNKeyHidDevice, which leaks the MAC address of the connected Bluetooth device...

5.9CVSS3.9AI score0.00116EPSS
Exploits0References3
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/08/25 5:18 a.m.28 views

Bluetooth + Electrical switchgear

The ongoing rapid growth of Industrial IoT IIoT across all business sectors continues to bring to focus the discrepancies that exist between the approaches to safety and cyber-security on safety critical sites. Safety has been culturally ingrained into all aspects of industrial site operations fo...

0.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/08/11 12:0 a.m.2 views

PT-2022-14481 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a configuration error in Bluetooth that could allow bypassing compiler exploit mitigations. This could lead to local escalation of privilege without requiring additional executi...

7.8CVSS7.7AI score0.001EPSS
Exploits0References2
Rows per page
Query Builder