352 matches found
CVE-2023-32230
An improper handling of a malformed API request to an API server in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service DoS situation...
CVE-2022-47371
In bt driver, there is a thread competition leads to early release of resources to be accessed. This could lead to local denial of service in kernel...
CVE-2021-25485
Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Oct-2021 Release 1 allows attackers to write file as system UID via BT remote socket...
CVE-2021-34145
The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot with an invalid Baseband packet type and LTADDRESS and LTADDR after completion of the LMP setup procedure, allowing attackers in radio range...
CVE-2021-34148
The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot with a greater ACL Length after completion of the LMP setup procedure, allowing attackers in radio range to trigger a denial of service...
CVE-2020-14930
An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp request, this token is transmitted not only to the registered phone number of the user account, but i...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from too many loops when allocating bt pages, which could lead to a soft lockup...
The vulnerability of the Linux operating system’s Bluetooth kernel component, which allows a hacker to trigger a service failure.
The vulnerability of the Linux operating system’s Bluetooth kernel component is related to improper error handling in the function btexit in net/bluetooth/afbluetooth.c. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2024-53025 Integer Overflow or Wraparound in BT Controller
Transient DOS can occur while processing UCI command...
CVE-2024-53025 Integer Overflow or Wraparound in BT Controller
Transient DOS can occur while processing UCI command...
Story About Medical Device Security
Ben Rothke relates a story about me working with a medical device firm back when I was with BT. I don't remember the story at all, or who the company was. But it sounds about right...
CVE-2024-6135
BT:Classic: Multiple missing buf length checks...
Telecom Giant BT Group Hit by Black Basta Ransomware
BT Group, a major telecommunications firm, has been hit by a ransomware attack from the Black Basta group. The attack targeted the company's Conferencing division, leading to server shutdowns and potential data theft...
CVE-2024-50078
CVE-2024-50078 affects the Linux kernel Bluetooth ISO path. If iso_init() has been called, iso_exit() must be invoked on module unload; failing to do so makes the proto registered with proto_register() invalid, which can lead to list corruption and a kernel BUG (example: list_add corruption and a...
kernel security update
5.14.0-427.40.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
CVE-2024-6259 BT: HCI: adv_ext_report Improper discarding in adv_ext_report
BT: HCI: advextreport Improper discarding in advextreport...
CVE-2024-6259 BT: HCI: adv_ext_report Improper discarding in adv_ext_report
BT: HCI: advextreport Improper discarding in advextreport...
CVE-2024-6259
CVE-2024-6259 concerns Zephyr RTOS Bluetooth HCI: the heap overflow stems from an improper discard in bt_hci_le_adv_ext_report (adv_ext_report) in /subsys/bluetooth/host/scan.c. Technical details across sources describe a missing size/check in the adv_ext_report path, enabling a heap-based overfl...
CVE-2024-6135
BT:Classic: Multiple missing buf length checks...
CVE-2024-5754 BT: Encryption procedure host vulnerability
BT: Encryption procedure host vulnerability...