Lucene search
K

18 matches found

SUSE CVE
SUSE CVE
added 2026/05/28 3:53 a.m.5 views

SUSE CVE-2026-46056

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: fix potential UAF in SSP passkey handlers hciconn lookup and field access must be covered by hdev lock in hciuserpasskeynotifyevt and hcikeypressnotifyevt, otherwise the connection can be freed concurrently...

5.5CVSS5.8AI score0.0003EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/27 7:7 p.m.10 views

CVE-2026-46056

A flaw was found in the Linux kernel's Bluetooth subsystem. This vulnerability, a Use-After-Free UAF, exists within the Secure Simple Pairing SSP passkey handlers. It occurs when hciconn lookup and field access are performed without proper locking, allowing a connection to be freed concurrently...

8.8CVSS6AI score0.0003EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/27 12:57 p.m.9 views

EUVD-2026-32438

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: fix potential UAF in SSP passkey handlers hciconn lookup and field access must be covered by hdev lock in hciuserpasskeynotifyevt and hcikeypressnotifyevt, otherwise the connection can be freed concurrently...

5.8AI score0.0003EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.4 views

CVE-2026-46056

Bluetooth: hcievent: fix potential UAF in SSP passkey handlers...

8.8CVSS5.8AI score0.0003EPSS
Exploits0References2
OSV
OSV
added 2024/05/17 12:15 p.m.1 views

UBUNTU-CVE-2024-27416

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix handling of HCIEVIOCAPAREQUEST If we received HCIEVIOCAPAREQUEST while HCIOPREADREMOTEEXTFEATURES is yet to be responded assume the remote does support SSP since otherwise this event shouldn't be generate...

5.5CVSS6.2AI score0.0002EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2024/04/19 12:0 a.m.125 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6742-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6742-1 advisory. Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an...

7.8CVSS6.9AI score0.00287EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/12/19 12:8 a.m.3 views

SUSE CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS...

6.8CVSS6.8AI score0.00203EPSS
Exploits1References14
OSV
OSV
added 2023/11/28 7:15 a.m.7 views

CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS...

6.8CVSS9.2AI score
Exploits0References2
NVD
NVD
added 2023/11/28 7:15 a.m.20 views

CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS...

6.8CVSS0.00203EPSS
Exploits1References2
OSV
OSV
added 2023/11/28 7:15 a.m.2 views

DEBIAN-CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS...

6.8CVSS6.4AI score0.00203EPSS
Exploits1References1
CVE
CVE
added 2023/11/28 12:0 a.m.324 views

CVE-2023-24023

CVE-2023-24023 describes a Bluetooth BR/EDR MITM vulnerability (BLUFFS) where Secure Simple Pairing and Secure Connections in Bluetooth Core 4.2–5.4 can be forced to use short keys, potentially enabling encryption-key discovery and live injection. Connected IBM/AS/Android material confirms the sa...

6.8CVSS6.8AI score0.00203EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/28 12:0 a.m.24 views

CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS...

6.7AI score0.00203EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2023/11/28 12:0 a.m.30 views

CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS...

6.8CVSS7.1AI score0.00203EPSS
Exploits1
OSV
OSV
added 2022/12/12 4:15 a.m.1 views

CVE-2022-25837

Bluetooth® Pairing in Bluetooth Core Specification v1.0B through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when at least one device supports BR/EDR Secure Connections pairing and the other BR/EDR Legacy PIN code pairing if the MITM...

7.5CVSS5.8AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/11/09 6:5 p.m.1 views

bluez: Passkey Entry protocol of the Bluetooth Core is vulnerable to an impersonation attack

A vulnerability was found in the bluez, where Passkey Entry protocol used in Secure Simple Pairing SSP, Secure Connections SC and LE Secure Connections LESC of the Bluetooth Core Specification is vulnerable to an impersonation attack where an active attacker can impersonate the initiating device...

4.3CVSS6.6AI score0.00034EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/07/16 12:0 a.m.353 views

Amazon Linux 2 : kernel, --advisory ALAS2-2021-1685 (ALAS-2021-1685)

The version of kernel installed on the remote host is prior to 4.14.238-182.421. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1685 advisory. A vulnerability was found in the bluez, where Passkey Entry protocol used in Secure Simple Pairing SSP, Secure...

9.8CVSS6.9AI score0.00473EPSS
Exploits7References104
RedhatCVE
RedhatCVE
added 2021/05/26 1:13 p.m.90 views

CVE-2020-26558

A vulnerability was found in the bluez, where Passkey Entry protocol used in Secure Simple Pairing SSP, Secure Connections SC and LE Secure Connections LESC of the Bluetooth Core Specification is vulnerable to an impersonation attack where an active attacker can impersonate the initiating device...

4.3CVSS2.5AI score0.00034EPSS
Exploits0References4
CERT
CERT
added 2018/07/23 12:0 a.m.582 views

Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange

Overview Bluetooth firmware or operating system software drivers may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device. Description CWE-325: Missi...

8CVSS6.3AI score0.0018EPSS
Exploits1References3
Rows per page
Query Builder