28 matches found
MiracleLinux 8 : bluez-5.63-5.el8_10.ML.1 (AXSA:2025-9877:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9877:01 advisory. BlueZ: Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability CVE-2023-27349 bluez: audio profile avrcp...
Photon OS 3.0: Bluez PHSA-2023-3.0-0580
An update of the bluez package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0580. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
RHEL 8 : bluez (RHSA-2025:4043)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4043 advisory. The bluez packages contain the following utilities for use in Bluetooth applications: hcitool, hciattach, hciconfig, bluetoothd, l2ping, sta...
Oracle Linux 8 : bluez (ELSA-2025-4043)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-4043 advisory. - Fixing CVE-2023-27349 - Fixing CVE-2023-51589 + bluez-5.63-4 - Fixing CVE-2023-50230 Tenable has extracted the preceding description block directly...
bluez security update
5.63-5 + bluez-5.63-5 - Resolves: RHEL-35371 - Fixing CVE-2023-27349 - Resolves: RHEL-35492 - Fixing CVE-2023-51589 5.63-4 + bluez-5.63-4 - Resolves: RHEL-35501 - Fixing CVE-2023-50230 - Resolves: RHEL-35504 - Fixing CVE-2023-50229...
Linux Distros Unpatched Vulnerability : CVE-2023-27349
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execut...
RHEL 9 : bluez (RHSA-2024:9413)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9413 advisory. The bluez packages contain the following utilities for use in Bluetooth applications: hcitool, hciattach, hciconfig, bluetoothd, l2ping, sta...
Debian dla-3879 : bluetooth - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3879 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3879-1 [email protected]...
Ubuntu: Security Advisory (USN-6809-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-3820-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3820-1] bluez security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3820-1 [email protected] https://www.debian.org/lts/security/ Arturo Borrero Gonzalez May 25, 2024 https://wiki.debian.org/LTS -...
CVE-2023-27349
A vulnerability was found in the BlueZ Audio Profile AVRCP, stemming from the improper validation of array indices. This flaw resides in the AVRCP protocol handling and arises due to inadequate validation of user-supplied data. Consequently, it may lead to writing beyond the bounds of an allocate...
CVE-2023-27349 BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability
BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the...
SUSE: Security Advisory (SUSE-SU-2023:2613-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: bluez / bluez-auto-enable-devices / bluez-cups / bluez-deprecated / etc (SUSE-SU-2023:2605-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2605-1 advisory. - CVE-2023-27349: Fixed crash while handling unsupported events bsc1210398. Tenable has extracted the...
SUSE-SU-2023:2613-1 Security update for bluez
This update for bluez fixes the following issues: - CVE-2023-27349: Fixed crash while handling unsupported events bsc1210398...
SUSE-SU-2023:2605-1 Security update for bluez
This update for bluez fixes the following issues: - CVE-2023-27349: Fixed crash while handling unsupported events bsc1210398...
SUSE SLED12 / SLES12 Security Update : bluez (SUSE-SU-2023:2562-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2562-1 advisory. - CVE-2023-27349: Fixed crash while handling unsupported events bsc1210398. Tenable has extracted the preceding...
SUSE: Security Advisory (SUSE-SU-2023:2562-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:2562-1 Security update for bluez
This update for bluez fixes the following issues: - CVE-2023-27349: Fixed crash while handling unsupported events bsc1210398...