10 matches found
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability stems from the smpcmdPairingReq function in the Bluetooth SMP protocol, which constructs a pairing...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001452)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001452 advisory. Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used...
CVE-2024-51738
Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 and earlier, Sunshine's pairing protocol implementation does not validate request order and is thereby vulnerable to a MITM attack, potentially allowing an unauthenticated attacker to pair a client by hijacking a legitimate pairi...
CVE-2024-51738
Sunshine (Moonlight self-hosted game stream host) prior to 2025.118.151840 is affected. In 0.23.1 and earlier, the pairing protocol does not validate request order, enabling a MITM attack that can hijack a legitimate pairing and may also be used to crash Sunshine. The vulnerability is fixed in 20...
CVE-2024-51738 Sunshine improperly enforces pairing protocol request order
Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 and earlier, Sunshine's pairing protocol implementation does not validate request order and is thereby vulnerable to a MITM attack, potentially allowing an unauthenticated attacker to pair a client by hijacking a legitimate pairi...
CVE-2024-51738 Sunshine improperly enforces pairing protocol request order
Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 and earlier, Sunshine's pairing protocol implementation does not validate request order and is thereby vulnerable to a MITM attack, potentially allowing an unauthenticated attacker to pair a client by hijacking a legitimate pairi...
PT-2025-2912 · Sunshine · Sunshine
Name of the Vulnerable Software and Affected Versions: Sunshine versions 0.23.1 and earlier Description: Sunshine is a self-hosted game stream host for Moonlight. The pairing protocol implementation does not validate request order, making it vulnerable to a MITM attack. This potentially allows an...
CVE-2022-32537
A vulnerability exists which could allow an unauthorized user to learn aspects of the communication protocol used to pair system components while the pump is being paired with other system components. Exploitation requires nearby wireless signal proximity with the patient and the device; advanced...
PT-2022-21355
Name of the Vulnerable Software and Affected Versions Medtronic affected versions not specified Description A vulnerability exists that could allow an unauthorized user to learn aspects of the communication protocol used to pair system components while the pump is being paired with other system...
DEBIAN-CVE-2020-26558
Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing in the Passkey authentication procedure by reflection of the public key and the authentication evidence of the initiati...