3 matches found
CVE-2023-31133
Ghost is an app for new-media creators with tools to build a website, publish content, send newsletters, and offer paid subscriptions to members. Prior to version 5.46.1, due to a lack of validation when filtering on the public API endpoints, it is possible to reveal private fields via a brute...
SUSE CVE-2017-1000250
All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests...
Linux BlueZ SDP Server Information Disclosure Vulnerability
BlueZ is an official Bluetooth stack for Linux, SDP server is one of the SDP servers. An information disclosure vulnerability exists in the Linux BlueZ SDP server. An information disclosure vulnerability exists in the SDP search attribute request processing of the SDP server in BlueZ 5.46 and...