Lucene search
K

46 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.7 views

The vulnerability of the hci_unregister_dev() function (net/bluetooth/hci_core.c) in the Linux operating system’s Bluetooth kernel driver allows a attacker to cause a service failure.

The vulnerability of the hciunregisterdev function net/bluetooth/hcicore.c in the Linux operating system’s Bluetooth kernel driver is related to improper resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00182EPSS
Exploits0References48Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.9 views

The vulnerability of the sco_sock_timeout() function in the Linux operating system’s Bluetooth kernel implementation allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the scosocktimeout function in the net/bluetooth/sco.c module of the Linux operating system’s Bluetooth kernel implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS7.2AI score0.0023EPSS
Exploits0References18Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.5 views

The vulnerability of the iso_sock_timeout() function in the Linux operating system’s Bluetooth kernel implementation allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the isosocktimeout function in the net/bluetooth/iso.c module of the Linux operating system’s Bluetooth kernel implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS6.8AI score0.00229EPSS
Exploits0References19Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/10/03 12:0 a.m.12 views

The vulnerability of the HID Profile interface of the Bluetooth protocol stack for the Linux BlueZ operating system allows a perpetrator to execute arbitrary commands.

The vulnerability of the HID Profile interface of the Bluetooth protocol stack for the Linux BlueZ operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

8.8CVSS7AI score0.02033EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/08/27 12:0 a.m.5 views

The vulnerability of the hci_req_syncComplete() function in the Linux operating system’s Bluetooth kernel allows a intruder to trigger a service failure.

The vulnerability of the hcireqsyncComplete function in the Linux operating system’s Bluetooth kernel relates to the lack of releasing the previous synchronization request state before assigning a reference to the new one. Exploiting this vulnerability can allow an attacker to cause a service...

5.5CVSS6.7AI score0.00279EPSS
Exploits0References47Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/06/17 12:0 a.m.12 views

The vulnerability of the l2cap_le_flowctl_init() function in the Linux kernel’s Bluetooth protocol implementation allows a attacker to cause a service failure.

The vulnerability of the l2capleflowctlinit function in the net/bluetooth/l2capcore.c module of the Linux operating system’s Bluetooth kernel implementation is related to the lack of input data validation. Exploiting this vulnerability could allow a remote attacker to cause service failures...

6.5CVSS6.5AI score0.00215EPSS
Exploits0References11Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.7 views

The vulnerability of the l2cap_connect() function in the Linux operating system’s Bluetooth kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the l2capconnect function in the net/bluetooth/l2capcore.c module of the Linux operating system’s Bluetooth kernel implementation is related to the reallocation of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an...

5.5CVSS6.2AI score0.00457EPSS
Exploits0References10Affected Software2
RedHat Linux
RedHat Linux
added 2024/03/19 5:43 p.m.6 views

kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c

A flaw was found in l2capsockrelease in net/bluetooth/l2capsock.c in the Bluetooth subsystem in the Linux Kernel. This issue may allow a user to cause a use-after-free problem due to sk's children being mishandled...

7.8CVSS6.8AI score0.0056EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/03/05 12:0 a.m.5 views

The vulnerability of the hci_conn_getPhy function in the Linux operating system’s Bluetooth driver allows a hacker to cause a service failure.

The vulnerability of the hciconngetPhy function in the Linux operating system’s Bluetooth driver leads to a freeze. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.7AI score0.00179EPSS
Exploits0References16Affected Software3
SUSE CVE
SUSE CVE
added 2024/02/07 3:45 a.m.4 views

SUSE CVE-2024-24860

A race condition was found in the Linux kernel's bluetooth device driver in min,maxkeysizeset function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue...

5.5CVSS6.4AI score0.00805EPSS
Exploits0References11
OSV
OSV
added 2024/01/30 8:15 a.m.2 views

DEBIAN-CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

7.8CVSS6.1AI score0.00495EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/04/20 12:0 a.m.7 views

The vulnerability of the btsdioremove() function in the drivers\bluetooth\btsdio.c driver of the Linux operating system’s Bluetooth kernel allows a attacker to cause a service failure.

The vulnerability of the btsdioremove function in the drivers\bluetooth\btsdio.c driver of the Linux operating system’s Bluetooth kernel relates to the reutilization of previously freed memory due to a race condition. Exploiting this vulnerability could allow an attacker to cause a service failur...

7CVSS6.4AI score0.00387EPSS
Exploits0References17Affected Software4
OSV
OSV
added 2023/04/11 9:15 p.m.1 views

DEBIAN-CVE-2023-1989

A use-after-free flaw was found in btsdioremove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdioremove with an unfinished job, may cause a race problem leading to a UAF on hdev devices...

7CVSS6.2AI score0.00387EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/04/03 12:0 a.m.6 views

The vulnerability of the hci_conn_hash_flush() function in the net/bluetooth/hci_conn.c module of the Linux operating system allows a malicious actor to increase their privileges.

The vulnerability of the hciconnhashflush function in the net/bluetooth/hciconn.c module of the Linux operating system is related to the repeated release of previously released memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS6.4AI score0.00274EPSS
Exploits0References11Affected Software8
BDU FSTEC
BDU FSTEC
added 2022/12/22 12:0 a.m.9 views

The vulnerability of the Linux operating system’s Bluetooth driver allows attackers to gain increased privileges.

The vulnerability of the Linux operating system’s Bluetooth driver kernel is related to errors during authentication processes. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

7.5CVSS7.2AI score0.00353EPSS
Exploits0References4Affected Software2
Debian
Debian
added 2021/08/07 6:51 p.m.62 views

[SECURITY] [DSA 4951-1] bluez security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4951-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 07, 2021 https://www.debian.org/security/faq -...

7.5CVSS2.8AI score0.04067EPSS
Exploits0
Debian
Debian
added 2021/08/07 6:51 p.m.103 views

[SECURITY] [DSA 4951-1] bluez security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4951-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 07, 2021 https://www.debian.org/security/faq -...

8.6CVSS8.4AI score0.04067EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/07/07 2:57 p.m.9 views

kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan

A use-after-free flaw was found in hcisendacl in the bluetooth host controller interface HCI in Linux kernel, where a local attacker with an access rights could cause a denial of service problem on the system The issue results from the object hchan, freed in hcidisconnloglinkcompleteevt, yet stil...

7.8CVSS6.7AI score0.00819EPSS
Exploits1References7
The Hacker News
The Hacker News
added 2020/10/16 7:19 a.m.12 views

Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices

Google security researchers are warning of a new set of zero-click vulnerabilities in the Linux Bluetooth software stack that can allow a nearby unauthenticated, remote attacker to execute arbitrary code with kernel privileges on vulnerable devices. According to security engineer Andy Nguyen, the...

8.8CVSS7.9AI score0.07693EPSS
Exploits6
BDU FSTEC
BDU FSTEC
added 2020/04/14 12:0 a.m.6 views

The vulnerabilities of the functions hci_uart_register_dev() and hci_uart_set_proto() in the Linux operating system allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerabilities of the functions hciuartregisterdev and hciuartsetproto drivers/bluetooth/hcildisc.c in the Linux operating system are related to the use of memory after it is freed. Exploiting these vulnerabilities could allow an attacker to compromise the confidentiality, integrity, and...

7CVSS6.6AI score0.00668EPSS
Exploits0References21Affected Software12
Rows per page
Query Builder