19 matches found
CVE-2026-10641
Zephyr Bluetooth Classic HFP HF CIND parser (subsys/bluetooth/host/classic/hfp_hf.c) contains an out-of-bounds write during +CIND=?/+CIND: handling. cind_handle_values() writes hf-ind_table[index] = i without verifying index is within the 20-element int8_t ind_table[]. A remote attacker could sen...
PT-2026-50394
Name of the Vulnerable Software and Affected Versions Zephyr versions 1.7 through 4.4.0 Description The Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser in subsys/bluetooth/host/classic/hfp hf.c contains an out-of-bounds write. During Service Level Connection setup, the Hands-Free ...
EUVD-2005-4412
Malware in sbrugna...
EUVD-2025-25854
Malicious code in bioql PyPI...
CVE-2025-0084
In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-0084
In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-0084
In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-0084
In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-0084
CVE-2025-0084 is a remote code execution risk in the Android Bluetooth stack (HFP enabled) caused by an out-of-bounds write due to a use-after-free condition in multiple locations. The vulnerability could allow an attacker, with adjacent access and no user interaction, to execute code on the devi...
CVE-2025-0084
In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2025-15637
Name of the Vulnerable Software and Affected Versions Nissan Leaf versions manufactured in 2020 affected versions not specified Description A flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue is due to insufficient boundary...
PT-2025-11062 · Google · Android
Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: The software contains potential out-of-bounds write issues stemming from a use-after-free condition. Successful exploitation of this issue could lead to remote code execution over Bluetooth when...
CVE-2023-21108
In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2023-21108
In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
PT-2023-17901 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-13 Description: In the sdpu build uuid seq function of sdp discovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if...
Huawei HarmonyOS 资源管理错误漏洞
Huawei HarmonyOS is an operating system from Huawei China. Huawei HarmonyOS is vulnerable to a memory mis-referencing vulnerability that stems from a confusion in the BT Hfp Client module's instructions for freeing memory. The vulnerability can be exploited by an attacker to potentially cause...
CVE-2022-22105
Memory corruption in bluetooth due to integer overflow while processing HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2022-25651
Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
"Connection is unsuccessful" error when you connect a Bluetooth device to an application in Windows 8.1 or Windows RT 8.1
"Connection is unsuccessful" error when you connect a Bluetooth device to an application in Windows 8.1 or Windows RT 8.1 This article describes an issue that occurs when you connect a Bluetooth device to an application in Windows 8.1 or Windows RT 8.1. An update is available to fix this issue...