CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-26592

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.0029EPSS

Exploits0References2

Cvelist•added 2025/09/04 6:33 p.m.•3 views

CVE-2024-49714

In avrcvendormsg of avrcopt.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.0001EPSS

Exploits0References2

NVD•added 2025/09/02 11:15 p.m.•3 views

CVE-2025-22435

In avdtmsgind of avdtmsg.cc, there is a possible memory corruption due to type confusion. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS0.0029EPSS

Exploits0References2

CVE•added 2025/09/02 10:11 p.m.•423 views

CVE-2025-22435

The CVE-2025-22435 issue affects the Android Bluetooth stack (avdt_msg_ind in avdt_msg.cc) where a type confusion leads to memory corruption. This can enable escalation of privilege on a paired device with no additional execution privileges and no user interaction required. CVSSv3.1 metrics indic...

9.8CVSS6.8AI score0.0029EPSS

Exploits0References2Affected Software1

OSV•added 2023/12/04 11:15 p.m.•3 views

CVE-2023-40078

In a2dpvendoropusdecoderdecodepacket of a2dpvendoropusdecoder.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS7.7AI score0.00144EPSS

Exploits0References2

Cvelist•added 2023/12/04 10:40 p.m.•12 views

CVE-2023-40087

In transcodeQToFloat of btifavrcpaudiotrack.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9AI score0.00079EPSS

Exploits0References2

CVE•added 2023/12/04 10:40 p.m.•125 views

CVE-2023-40087

CVE-2023-40087 affects Android Bluetooth code in transcodeQ*ToFloat (btif_avrcp_audio_track.cc) with a missing bounds check, causing an out-of-bounds write and potential elevation of privilege on a paired device. No user interaction required. Documents note this issue and reference Android patch ...

8.8CVSS8.7AI score0.00079EPSS

Exploits0References2Affected Software1

OSV•added 2023/09/11 9:15 p.m.•3 views

CVE-2023-35684

In avdtmsgasmbl of avdtmsg.cc, there is a possible out of bounds write due to an integer overflow. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS6AI score0.0003EPSS

Exploits0References2

CVE•added 2023/09/11 8:9 p.m.•131 views

CVE-2023-35684

CVE-2023-35684 is described across multiple sources as a vulnerability in the Android Bluetooth stack: in the function avdt_msg_asmbl of avdt_msg.cc there is a possible out-of-bounds write caused by an integer overflow that could allow paired devices to escalate privileges with no extra execution...

8.8CVSS8.7AI score0.0003EPSS

Exploits0References2Affected Software1

Prion•added 2023/06/15 7:15 p.m.•13 views

Out-of-bounds

In btmsecencryptchange of btmsec.cc, there is a possible way to downgrade the link key type due to improperly used crypto. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.8CVSS8.6AI score0.00019EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by