CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•9 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: l2cap: Check the encryption key size during incoming connections. This is required for passing the GAP/SEC/SEM/BI-04-C PTS test case: - Security Mode: 4, Level: 4, Responder: Invalid Encryption Key Size - Key Size:...

8.1CVSS5.5AI score0.00007EPSS

Exploits0References2

RedhatCVE•added 2026/05/06 6:13 p.m.•4 views

CVE-2026-43134

A flaw was found in the Linux kernel's Bluetooth Low Energy LE Logical Link Control and Adaptation Protocol L2CAP. A missing check for encryption key size when processing connection requests could allow a remote attacker to send a malformed request. This could lead to a protocol violation,...

8.1CVSS5.8AI score0.00019EPSS

Exploits0References4

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27694

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size check for L2CAPLECONNREQ This adds a check for encryption key size upon receiving L2CAPLECONNREQ which is required by L2CAP/LE/CFC/BV-15-C which expects L2CAPCRLEBADKEYSIZE...

5.8AI score0.00019EPSS

Exploits0References9

NVD•added 2026/05/06 12:16 p.m.•1 views

CVE-2026-43134

8.1CVSS0.00019EPSS

Exploits0References8

ATTACKERKB•added 2026/05/06 11:27 a.m.•3 views

CVE-2026-43134

5.8AI score0.00019EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/05/06 11:27 a.m.•22 views

CVE-2026-43134 Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ

8.1CVSS0.00019EPSS

Exploits0References8

CVE•added 2026/05/06 11:27 a.m.•8 views

CVE-2026-43134

The CVE-2026-43134 entry affects the Linux kernel Bluetooth stack. The root cause is a missing encryption key size check in the L2CAP_LE_CONN_REQ handling, which could permit a malformed L2CAP LE connection request and trigger a protocol violation. A patch was added to perform the key-size valida...

8.1CVSS5.8AI score0.00019EPSS

Exploits0References8Affected Software1

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37474

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Bluetooth L2CAP component fails to perform a key size check when receiving L2CAP LE CONN REQ. This missing validation is contrary to the L2CAP/LE/CFC/BV-15-C requirement, which expec...

8.1CVSS5.4AI score0.00019EPSS

Exploits0References18

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-30958

Malicious code in bioql PyPI...

6.3AI score0.00007EPSS

Exploits0References7

SUSE CVE•added 2025/09/24 11:22 p.m.•1 views

SUSE CVE-2025-39889

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This is required for passing GAP/SEC/SEM/BI-04-C PTS test case: Security Mode 4 Level 4, Responder - Invalid Encryption Key Size - 128 bit This tests the security...

4.7CVSS6.4AI score0.00007EPSS

Exploits0References21

NVD•added 2025/09/24 11:15 a.m.•3 views

CVE-2025-39889

8.1CVSS0.00007EPSS

Exploits0References7

OSV•added 2025/09/24 11:15 a.m.•0 views

UBUNTU-CVE-2025-39889

8.1CVSS5.9AI score0.00007EPSS

Exploits0References25

Cvelist•added 2025/09/24 11:2 a.m.•7 views

CVE-2025-39889 Bluetooth: l2cap: Check encryption key size on incoming connection

8.1CVSS0.00007EPSS

Exploits0References7

Vulnrichment•added 2025/09/24 11:2 a.m.•1 views

CVE-2025-39889 Bluetooth: l2cap: Check encryption key size on incoming connection

8.1CVSS6AI score0.00007EPSS

Exploits0References7

CVE•added 2025/09/24 11:2 a.m.•19 views

CVE-2025-39889

CVE-2025-39889 affects the Linux kernel Bluetooth L2CAP stack by not properly validating the encryption key size on incoming connections. This failure can cause a mismatch between expected and actual key sizes, impacting security posture. Connected OSV data indicates Root has patched CVE-2025-398...

8.1CVSS6AI score0.00007EPSS

Exploits0References7Affected Software1

OSV•added 2025/09/24 11:2 a.m.•2 views

CVE-2025-39889 Bluetooth: l2cap: Check encryption key size on incoming connection

5.5CVSS6.4AI score0.00007EPSS

Exploits0References10

ATTACKERKB•added 2025/09/24 11:2 a.m.•2 views

CVE-2025-39889

8.1CVSS5.8AI score0.00007EPSS

Exploits0References8Affected Software1

Positive Technologies•added 2025/04/09 12:0 a.m.•1 views

PT-2025-39241

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the Bluetooth L2CAP implementation related to the handling of encryption key sizes during incoming connections. The problem arises when the...

5.5CVSS6.1AI score0.00007EPSS

Exploits0

OSV•added 2024/04/25 5:10 p.m.•2 views

CLSA-2024-1714065005 Fix of 9 CVEs

CVE-url: https://ubuntu.com/security/CVE-2023-1998 - x86/speculation: Allow enabling STIBP with legacy IBRS CVE-url: https://ubuntu.com/security/CVE-2021-47193 - scsi: pm80xx: Tie the interrupt name to the module instance - scsi: pm80xx: Deal with kexec reboots - scsi: pm80xx: Increase number of...

7.8CVSS7AI score0.00203EPSS

Exploits4References1

UbuntuCve•added 2024/04/17 11:15 a.m.•24 views

CVE-2024-26903

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcommchecksecurity During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and...

5.5CVSS6.4AI score0.0001EPSS

Exploits0References30

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by