CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix u8 overflow By keep sending L2CAPCONFREQ packets, chan-numconfrsp increases multiple times and eventually it will wrap around the maximum number i.e., 255. This patch prevents this by adding a boundary check...

5.5CVSS0.00007EPSS

Exploits0References8

Vulnrichment•added 2024/10/21 8:5 p.m.•16 views

CVE-2022-48947 Bluetooth: L2CAP: Fix u8 overflow

7AI score0.00007EPSS

Exploits0References8

Cvelist•added 2024/10/21 8:5 p.m.•17 views

CVE-2022-48947 Bluetooth: L2CAP: Fix u8 overflow

0.00007EPSS

Exploits0References8

Fedora•added 2023/12/11 1:28 a.m.•28 views

[SECURITY] Fedora 38 Update: bluez-5.70-5.fc38

Utilities for use in Bluetooth applications: - avinfo - bluemoon - bluetoothctl - bluetoothd - btattach - btmon - hex2hcd - l2ping - l2test - mpris-proxy - rctest The BLUETOOTH trademarks are owned by Bluetooth SIG, Inc., U.S.A...

6.3CVSS7.1AI score0.36549EPSS

Exploits7

SUSE CVE•added 2023/02/15 4:55 a.m.•1 views

SUSE CVE-2016-9799

In BlueZ 5.42, a buffer overflow was observed in "pklgreadhci" function in "btsnoop.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

5.3CVSS7.4AI score0.00476EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 4:55 a.m.•2 views

SUSE CVE-2016-9802

In BlueZ 5.42, a buffer over-read was identified in "l2cappacket" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

5.3CVSS7.1AI score0.00476EPSS

Exploits1References8

SUSE CVE•added 2023/02/15 4:54 a.m.•1 views

SUSE CVE-2016-9918

In BlueZ 5.42, an out-of-bounds read was identified in "packethexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

4.4CVSS6.8AI score0.00489EPSS

Exploits1References8

Fedora•added 2021/08/02 1:5 a.m.•36 views

[SECURITY] Fedora 34 Update: bluez-5.60-2.fc34

6.5CVSS2.8AI score0.00073EPSS

Exploits0

Tenable Nessus•added 2021/03/10 12:0 a.m.•34 views

EulerOS Virtualization 3.0.6.6 : bluez (EulerOS-SA-2021-1460)

According to the versions of the bluez packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In BlueZ 5.42, a use-after-free was identified in 'confopt' function in 'tools/parser/l2cap.c' source file. This issue can be...

7.5CVSS6.4AI score0.00489EPSS

Exploits7References8

Tenable Nessus•added 2021/02/04 12:0 a.m.•33 views

EulerOS 2.0 SP5 : bluez (EulerOS-SA-2021-1179)

According to the versions of the bluez packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In BlueZ 5.42, a use-after-free was identified in 'confopt' function in 'tools/parser/l2cap.c' source file. This issue can be triggered by...

7.5CVSS6.4AI score0.00489EPSS

Exploits7References8

Tenable Nessus•added 2019/12/19 12:0 a.m.•30 views

EulerOS 2.0 SP3 : bluez (EulerOS-SA-2019-2559)

According to the versions of the bluez packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In BlueZ 5.42, a buffer overflow was observed in 'commandsdump' function in 'tools/parser/csr.c' source file. The issue exists because 'commands'...

7.5CVSS6.4AI score0.00489EPSS

Exploits7References8

RedhatCVE•added 2016/12/12 2:47 p.m.•25 views

CVE-2016-9918

7.5CVSS3.8AI score0.00489EPSS

Exploits1References1

CNVD•added 2016/12/12 12:0 a.m.•18 views

BlueZ Out-of-Bounds Read Vulnerability

BlueZ is an official Bluetooth stack for Linux. An out-of-bounds read vulnerability exists in the 'packethexdump' function of the monitor/packet.c source file in BlueZ 5.42. An attacker can exploit this vulnerability to cause btmon to crash with the help of a compromised dump file...

7.5CVSS9AI score0.00489EPSS

Exploits1References1