Lucene search
K

6 matches found

BDU FSTEC
BDU FSTEC
added 2022/05/26 12:0 a.m.6 views

The vulnerability of the database.c component of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to access confidential information.

The vulnerability of the database.c component of the Bluetooth protocol stack for the Linux BlueZ operating system is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to gain access to confidential information...

9.4CVSS6.6AI score0.01544EPSS
Exploits0References10Affected Software5
Tenable Nessus
Tenable Nessus
added 2022/05/06 12:0 a.m.41 views

EulerOS 2.0 SP10 : bluez (EulerOS-SA-2022-1657)

According to the versions of the bluez package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a...

9.1CVSS6.7AI score0.01544EPSS
Exploits0References2
CNVD
CNVD
added 2021/11/08 12:0 a.m.27 views

BlueZ Resource Management Error Vulnerability

BlueZ is a Bluetooth protocol stack written in C, which is primarily used to provide support for the core Bluetooth layer and protocol. a resource management error vulnerability exists in BlueZ, which stems from the failure of the D-Bus in the product's gatt-database.c file to properly handle...

9.1CVSS1.3AI score0.01544EPSS
Exploits0References1
Prion
Prion
added 2021/11/04 11:15 p.m.18 views

Design/Logic Flaw

An issue was discovered in gatt-database.c in BlueZ 5.61. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call...

6.4CVSS8.9AI score0.01544EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2021/11/04 12:0 a.m.162 views

CVE-2021-43400

CVE-2021-43400 affects BlueZ (BlueZ 5.61) in the gatt-database.c component. A use-after-free can occur when a client disconnects during D-Bus processing of a WriteValue call, potentially enabling memory corruption. The issue is documented across multiple advisories (Astra Linux, Debian LTS/DLA li...

9.1CVSS8.9AI score0.01544EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2021/06/10 2:30 a.m.237 views

CVE-2021-3588

CVE-2021-3588 affects BlueZ (BlueZ Bluetooth stack). The issue is in cli_feat_read_cb() in src/gatt-database.c where bounds checks on offset are missing before indexing an array, potentially exposing memory contents. Multiple advisories indicate downstream risk and mitigation via upgrading BlueZ ...

3.3CVSS4AI score0.0045EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder