Lucene search
K

19 matches found

CVE
CVE
added 2026/06/17 1:14 p.m.18 views

CVE-2026-10641

Zephyr Bluetooth Classic HFP HF CIND parser (subsys/bluetooth/host/classic/hfp_hf.c) contains an out-of-bounds write during +CIND=?/+CIND: handling. cind_handle_values() writes hf-ind_table[index] = i without verifying index is within the 20-element int8_t ind_table[]. A remote attacker could sen...

7.1CVSS5.5AI score0.00282EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.17 views

PT-2026-50394

Name of the Vulnerable Software and Affected Versions Zephyr versions 1.7 through 4.4.0 Description The Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser in subsys/bluetooth/host/classic/hfp hf.c contains an out-of-bounds write. During Service Level Connection setup, the Hands-Free ...

7.1CVSS5.8AI score0.00282EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-4412

Malware in sbrugna...

6.4CVSS6.4AI score0.04849EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25854

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00209EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:20 p.m.5 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS7.9AI score0.00209EPSS
Exploits0References1
NVD
NVD
added 2025/08/26 11:15 p.m.5 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS0.00209EPSS
Exploits0References2
OSV
OSV
added 2025/08/26 11:15 p.m.7 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS6.3AI score0.00209EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/26 10:48 p.m.9 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00209EPSS
Exploits0References2
CVE
CVE
added 2025/08/26 10:48 p.m.75 views

CVE-2025-0084

CVE-2025-0084 is a remote code execution risk in the Android Bluetooth stack (HFP enabled) caused by an out-of-bounds write due to a use-after-free condition in multiple locations. The vulnerability could allow an attacker, with adjacent access and no user interaction, to execute code on the devi...

8.8CVSS7.6AI score0.00209EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/26 10:48 p.m.2 views

CVE-2025-0084

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation...

8.1AI score0.00209EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.6 views

PT-2025-15637

Name of the Vulnerable Software and Affected Versions Nissan Leaf versions manufactured in 2020 affected versions not specified Description A flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue is due to insufficient boundary...

8.8CVSS6.8AI score0.00379EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2025/03/12 12:0 a.m.4 views

PT-2025-11062 · Google · Android

Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: The software contains potential out-of-bounds write issues stemming from a use-after-free condition. Successful exploitation of this issue could lead to remote code execution over Bluetooth when...

8.8CVSS7.4AI score0.00209EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2023/06/15 7:15 p.m.2 views

CVE-2023-21108

In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS7.8AI score0.00239EPSS
Exploits0References2
OSV
OSV
added 2023/06/15 7:15 p.m.4 views

CVE-2023-21108

In sdpubuilduuidseq of sdpdiscovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS6.3AI score0.00239EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/15 12:0 a.m.4 views

PT-2023-17901 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-13 Description: In the sdpu build uuid seq function of sdp discovery.cc, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if...

8.8CVSS8.8AI score0.00239EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/05 12:0 a.m.6 views

Huawei HarmonyOS 资源管理错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. Huawei HarmonyOS is vulnerable to a memory mis-referencing vulnerability that stems from a confusion in the BT Hfp Client module's instructions for freeing memory. The vulnerability can be exploited by an attacker to potentially cause...

9.8CVSS7.3AI score0.00588EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/09/16 6:15 a.m.8 views

CVE-2022-22105

Memory corruption in bluetooth due to integer overflow while processing HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music...

9.8CVSS7.4AI score0.00429EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/14 10:15 a.m.4 views

CVE-2022-25651

Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

10CVSS5.5AI score0.00802EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2020/04/09 12:0 a.m.10 views

"Connection is unsuccessful" error when you connect a Bluetooth device to an application in Windows 8.1 or Windows RT 8.1

"Connection is unsuccessful" error when you connect a Bluetooth device to an application in Windows 8.1 or Windows RT 8.1 This article describes an issue that occurs when you connect a Bluetooth device to an application in Windows 8.1 or Windows RT 8.1. An update is available to fix this issue...

6.3AI score
Exploits0
Rows per page
Query Builder